Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:5165
HistorySep 25, 2017 - 2:32 p.m.

Cross-site Scripting (XSS)

2017-09-2514:32:19
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5

0.001 Low

EPSS

Percentile

38.0%

genix/cms is vulnerable to cross-site scripting (XSS) attacks. The library does not properly sanitize the id field in inc/lib/Control/Backend/menus.control.php, allowing a malicious user to inject and execute arbitrary web script.

CPENameOperatorVersion
genix/cmsle1.1.4

0.001 Low

EPSS

Percentile

38.0%

Related for VERACODE:5165