Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:openkm:openkm:6.4.18:*:*:*:professional:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2014-8957 |
Cross-site scripting (XSS) vulnerability in OpenKM before 6.4.19 allows remote authenticated users to inject arbitrary web script or HTML via the Tasks parameter. Published: October 06, 2017; 6:29:00 PM -0400 |
V4.0:(not available) V3.0: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2014-9017 |
Cross-site scripting (XSS) vulnerability in OpenKM before 6.4.19 (build 23338) allows remote authenticated users to inject arbitrary web script or HTML via the Subject field in a Task to frontend/index.jsp. Published: March 11, 2015; 10:59:02 AM -0400 |
V4.0:(not available) V3.x:(not available) V2.0: 3.5 LOW |