3 matches found
CVE-2014-8944
Lexiglot through 2014-11-20 allows XSS Reflected via the username, or XSS Stored via the admin.php?page=config installname, intromessage, or newfilecontent parameter...
CVE-2014-8944
Lexiglot through 2014-11-20 allows XSS Reflected via the username, or XSS Stored via the admin.php?page=config installname, intromessage, or newfilecontent parameter...
CVE-2014-8944
Lexiglot (PHP-based translation platform) is affected by CVE-2014-8944 through 2014-11-20, with XSS vulnerabilities in both Reflected and Stored forms. The Reflected XSS can be triggered via the username parameter, while Stored XSS is possible in admin.php?page=config via install_name, intro_mess...