NVD

Id
32666  
Name
CVE-2014-4743  
Description
Multiple cross-site scripting (XSS) vulnerabilities in (1) search_ajax.tpl and (2) search_ajax_small.tpl in templates/default/tpl/module_search/ in the Search module (module_search) in Kajona before 4.5 allow remote attackers to inject arbitrary web script or HTML via the search parameter.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2014-07-09  
Modified Date
2015-10-05  
Seq
2014-4743  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
171988 32666 CVE-2014-4743 http://www.kajona.de/en/Development/Changelog/Changelog-V4-5/changelog_45.html  View
171989 32666 CVE-2014-4743 68498  View
171990 32666 CVE-2014-4743 https://github.com/kajona/kajonacms/commit/4a07f949c171da6aa9a6e6c19421b0df16297180  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
14429 JVNDB-2014-003304 Kajona の Search モジュールの templates/default/tpl/module_search/ におけるクロスサイトスクリプティングの脆弱性 Kajona の Search モジュール (module_search) の templates/default/tpl/module_search/ の (1) search_ajax.tpl および (2) search_ajax_small.tpl には、クロスサイトスクリプティングの脆弱性が存在します CVE-2014-4743 72032 CVE-2014-4743 32666 4.3 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-003304.html 2014-06-08 2014-07-11 View