Multiple cross-site scripting (XSS) vulnerabilities in Saurus CMS 4.7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) search parameter to admin/user_management.php, (2) data_search parameter to /admin/profile_data.php, or (3) filter parameter to error_log.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2015-02-09T11:00:00Z
Updated: 2024-09-17T02:37:19.841Z
Reserved: 2015-02-08T00:00:00Z
Link: CVE-2015-1562
Vulnrichment
No data.
NVD
Status : Modified
Published: 2015-02-09T11:59:06.117
Modified: 2024-11-21T02:25:39.553
Link: CVE-2015-1562
Redhat
No data.