Lucene search
Veracode Vulnerability DatabaseVERACODE:5211HistoryOct 02, 2017 - 10:55 a.m.
Cross-site Scripting (XSS)
2017-10-0210:55:28
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
38.2%
genix/cms is vulnerable to cross-site scripting (XSS) attacks. The library does not properly sanitize the Menu ID field ininc/lib/Control/Backend/menus.control.php , allowing a malicious user to inject and execute arbitrary web script through a page=menus request.
Related
cvelist
cvelist
CVE-2017-14765
2017-09-27 08:00:00
CVE-2017-17431
2022-10-03 16:23:19
cve
cve
CVE-2017-14765
2017-09-27 08:29:00
CVE-2017-17431
2022-10-03 16:23:19
osv
osv
GeniXCMS Cross-site Scripting (XSS) via the Menu ID field
2022-05-17 00:36:05
CVE-2017-14765
2017-09-27 08:29:00
CVE-2017-17431
2017-12-05 21:29:00
nvd
nvd
CVE-2017-14765
2017-09-27 08:29:00
CVE-2017-17431
2017-12-05 21:29:00
github
github
GeniXCMS Cross-site Scripting (XSS) via the Menu ID field
2022-05-17 00:36:05
GeniXCMS XSS Vulnerability
2022-05-17 00:11:38
prion
prion
Cross site request forgery (csrf)
2017-09-27 08:29:00
Code injection
2017-12-05 21:29:00