mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-06 07:11:37 +00:00
738 B
738 B
CVE-2014-4742
Description
Cross-site scripting (XSS) vulnerability in system/class_link.php in the System module (module_system) in Kajona before 4.5 allows remote attackers to inject arbitrary web script or HTML via the systemid parameter in a mediaFolder action to index.php.
POC
Reference
Github
No PoCs found on GitHub currently.