CVE
- Id
- 78839
- CVE No.
- CVE-2015-1562
- Status
- Candidate
- Description
- Multiple cross-site scripting (XSS) vulnerabilities in Saurus CMS 4.7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) search parameter to admin/user_management.php, (2) data_search parameter to /admin/profile_data.php, or (3) filter parameter to error_log.php.
- Phase
- Assigned (20150208)
- Votes
- None (candidate not yet proposed)
- Comments