Lucene search
PRIOn knowledge basePRION:CVE-2011-4709HistoryDec 08, 2011 - 7:55 p.m.
Cross site scripting
2011-12-0819:55:00
PRIOn knowledge base
www.prio-n.com
Multiple cross-site scripting (XSS) vulnerabilities in Hotaru.php in the Search plugin 1.3 for Hotaru CMS allow remote attackers to inject arbitrary web script or HTML via the (1) SITE_NAME parameter to admin_index.php, or the (2) return and (3) search parameters to index.php. NOTE: some of these details are obtained from third party information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| hotaru_cms | eq | 1.4.2 | |
| search_plugin | eq | 1.3 |
References
Related
zeroscience
zeroscience
Hotaru CMS 1.4.2 SITE_NAME Parameter Stored XSS Vulnerability
2011-11-13 00:00:00
cvelist
cvelist
CVE-2011-4709
2011-12-08 19:00:00
CVE-2019-17522
2019-10-12 17:44:10
cve
cve
CVE-2011-4709
2011-12-08 19:55:05
CVE-2019-17522
2019-10-12 18:15:16
nvd
nvd
CVE-2011-4709
2011-12-08 19:55:05
CVE-2019-17522
2019-10-12 18:15:16
veracode
veracode
Cross-Site Scripting (XSS)
2019-10-14 05:40:09
osv
osv
CVE-2019-17522
2019-10-12 18:15:16
prion
prion
Cross site scripting
2019-10-12 18:15:00