Cross-site scripting (XSS) vulnerability in Starphire SiteSage 5.0.18 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified search parameters, possibly the norelay_highlight_words parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
starphire technologies sitesage-sb |
||
starphire technologies sitesage-se |
||
starphire technologies sitesage 5.0.18 |
||
starphire technologies sitesage-ee |
||
starphire technologies sitesage-le |