CVE-2014-8304
CVE-2014-8304 is an XSS vulnerability in In-Portal CMS 5.2.0 and earlier. The issue allows remote attackers to inject arbitrary web script or HTML via the next_template parameter to admin/index.php. Affected component: In-Portal CMS web interface (admin panel). Root cause is input handling in nex...