Lucene search
K

4 matches found

NVD
NVD
added 2020/02/08 5:15 p.m.20 views

CVE-2014-9470

Cross-site scripting XSS vulnerability in the loadForm function in Frontend/Modules/Search/Actions/Index.php in Fork CMS before 3.8.4 allows remote attackers to inject arbitrary web script or HTML via the qwidget parameter to en/search...

6.1CVSS6.1AI score0.01421EPSS
Exploits2References6
CVE
CVE
added 2020/02/08 4:3 p.m.103 views

CVE-2014-9470

Fork CMS prior to 3.8.4 is affected by a cross-site scripting (XSS) vulnerability in the loadForm() function (Frontend/Modules/Search/Actions/Index.php) where the q_widget parameter to /en/search can inject arbitrary script/HTML. The issue arises from insufficient input filtering and is exploitab...

6.1CVSS6AI score0.01421EPSS
Exploits2References6Affected Software1
Cvelist
Cvelist
added 2020/02/08 4:3 p.m.19 views

CVE-2014-9470

Cross-site scripting XSS vulnerability in the loadForm function in Frontend/Modules/Search/Actions/Index.php in Fork CMS before 3.8.4 allows remote attackers to inject arbitrary web script or HTML via the qwidget parameter to en/search...

6.1AI score0.01421EPSS
Exploits2References6
Packet Storm
Packet Storm
added 2015/01/13 12:0 a.m.46 views

Fork CMS 3.8.3 Cross Site Scripting

Exploit Title: XSS Vulnerability in Fork CMS 3.8.3 Google Dork: N/A Date: 12/26/2014 Exploit Author: Le Ngoc phi [email protected] and ITAS Team www.itas.vn Vendor Homepage: http://www.fork-cms.com Software Link: http://www.fork-cms.com/blog/detail/fork-3.8.4-released Version: Fork 3.8.3 Tested on...

6.4AI score0.01421EPSS
Exploits2
Rows per page
Query Builder