Cross-site scripting (XSS) vulnerability in LiveCMS 3.4 and previous versions allows remote malicious users to inject arbitrary web script or HTML via an article name, possibly involving the titulo parameter in article.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
livecms livecms 3.0 |
||
livecms livecms 3.3 |
||
livecms livecms 3.3_rc1 |
||
livecms livecms 3.3_rc2 |
||
livecms livecms 3.4 |
||
livecms livecms 3.4a |