4 matches found
CVE-2017-9621
Cross-site scripting XSS vulnerability in modules/Base/Lang/Administrator/updatetranslation.php in EPESI in Telaxus/EPESI 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the 1 original or 2 new parameter...
CVE-2017-9621
Cross-site scripting XSS vulnerability in modules/Base/Lang/Administrator/updatetranslation.php in EPESI in Telaxus/EPESI 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the 1 original or 2 new parameter...
CVE-2017-9621
Cross-site scripting XSS vulnerability in modules/Base/Lang/Administrator/updatetranslation.php in EPESI in Telaxus/EPESI 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the 1 original or 2 new parameter...
CVE-2017-9621
EPESI (Telaxus) 1.8.2 and earlier contains a Cross-site scripting (XSS) vulnerability in modules/Base/Lang/Administrator/update_translation.php, exploitable via the original or new parameter. Affected component is the update_translation.php translation update logic; root cause is unsanitized user...