Vulnerabilities > Jamroom > Search Module
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-10-20 | CVE-2014-5098 | Cross-Site Scripting vulnerability in Jamroom Search Module Cross-site scripting (XSS) vulnerability in the Search module before 1.2.2 in Jamroom allows remote attackers to inject arbitrary web script or HTML via the query string to search/results/. | 4.3 |
2013-12-05 | CVE-2013-6804 | Cross-Site Scripting vulnerability in Jamroom Search Module 1.0.0/1.1.0 Cross-site scripting (XSS) vulnerability in the Search module before 1.1.1 for Jamroom allows remote attackers to inject arbitrary web script or HTML via the search_string parameter to search/results/all/1/4. | 4.3 |