Cross-site scripting (XSS) vulnerability in the Search feature in elka CMS (aka Elkapax) allows remote malicious users to inject arbitrary web script or HTML via the q parameter to the default URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
elkagroup elkapax cms - |