CVE-2014-8505

Multiple cross-site scripting (XSS) vulnerabilities in Etiko CMS allow remote attackers to inject arbitrary web script or HTML via the (1) page_id parameter to loja/index.php or (2) article_id parameter to index.php.
Configurations

Configuration 1 (hide)

cpe:2.3:a:etiko:etiko_cms:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-10-28 14:55

Updated : 2024-02-28 12:20


NVD link : CVE-2014-8505

Mitre link : CVE-2014-8505

CVE.ORG link : CVE-2014-8505


JSON object : View

Products Affected

etiko

  • etiko_cms
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')