Lucene search
Veracode Vulnerability DatabaseVERACODE:4682HistoryJul 26, 2017 - 2:42 a.m.
Cross-site Scripting (XSS)
2017-07-2602:42:10
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
47.8%
symphonycms/symphony-2 is vulnerable to cross-site scripting (XSS) attacks. A flaw in the template/usererror.missing_extension.php allows attackers to inject script through the existing-folder parameter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| symphonycms/symphony-2 | le | 2.6.9 |
Related
osv
osv
CVE-2017-5542
2017-01-20 08:59:00
cvelist
cvelist
CVE-2017-5542
2017-01-20 08:39:00
nvd
nvd
CVE-2017-5542
2017-01-20 08:59:00
cve
cve
CVE-2017-5542
2017-01-20 08:59:00
prion
prion
Cross site scripting
2017-01-20 08:59:00
openvas
openvas