CVE-2014-4743
Kajona CMS is prone to multiple XSS in the Search module (template files search_ajax.tpl and search_ajax_small.tpl). The vulnerability allows remote attackers to inject arbitrary web script or HTML via the search parameter. Affected product: Kajona before 4.5 (in the Search module). Root cause: i...