Cross-site scripting (XSS) vulnerability in search.cfm in... · CVE-2006-3043 · GitHub Advisory Database · GitHub

Cross-site scripting (XSS) vulnerability in search.cfm in...

Low severity Unreviewed Published May 1, 2022 to the GitHub Advisory Database • Updated Jan 31, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

Cross-site scripting (XSS) vulnerability in search.cfm in CreaFrameXe (CFXe) CMS 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the voltext_suche parameter.

References

Published by the National Vulnerability Database

Jun 16, 2006

Published to the GitHub Advisory Database May 1, 2022

Last updated Jan 31, 2023