3 matches found
CVE-2014-5098
CVE-2014-5098 affects Jamroom’s Search module up to version 1.2.1 (reported as 5.2.6 in Jamroom context). The vulnerability arises from insufficient sanitization of user-supplied data in the /search/results/ query string, enabling reflected XSS via crafted links. Impact is remote execution of arb...
Jamroom 5.2.6 Cross Site Scripting
Advisory ID: HTB23224 Product: Jamroom Vendor: Talldude Networks, LLC Vulnerable Versions: 5.2.6 and probably prior Tested Version: 5.2.6 Advisory Publication: July 23, 2014 without technical details Vendor Notification: July 23, 2014 Vendor Patch: July 23, 2014 Public Disclosure: August 13, 2014...
Jamroom 5.2.6 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications Product: Jamroom Vendor: Talldude Networks, LLC Vulnerable Versions: 5.2.6 and probably prior Tested Version: 5.2.6 Advisory Publication: July 23, 2014 without technical details Vendor Notification: July 23, 2014 Vendor Patch: July 23, 2014...