kajona/kajonacms

kajona/kajonacms

Releases18

Frequency2 months 6 days

Last Release about 9 years ago

Stars23

An open source content management framework

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2015-0917 ↗	Jan 8, 2015Thursday, 8 January 2015, 15:59	—	4.3 MEDIUM
Cross-site scripting (XSS) vulnerability in the backend in Kajona before 4.6.3 allows remote attackers to inject arbitrary web script or HTML via the action parameter to index.php.
CVE-2014-4742 ↗	Jul 9, 2014Wednesday, 9 July 2014, 14:55	—	4.3 MEDIUM
Cross-site scripting (XSS) vulnerability in system/class_link.php in the System module (module_system) in Kajona before 4.5 allows remote attackers to inject arbitrary web script or HTML via the systemid parameter in a mediaFolder action to index.php.
CVE-2014-4743 ↗	Jul 9, 2014Wednesday, 9 July 2014, 14:55	—	4.3 MEDIUM
Multiple cross-site scripting (XSS) vulnerabilities in (1) search_ajax.tpl and (2) search_ajax_small.tpl in templates/default/tpl/module_search/ in the Search module (module_search) in Kajona before 4.5 allow remote attackers to inject arbitrary web script or HTML via the search parameter.