Vulnerabilities > Tornado

DATE CVE VULNERABILITY TITLE RISK
2008-11-28 CVE-2008-5264 Cross-Site Scripting vulnerability in Tornado Knowledge Retrieval System
Cross-site scripting (XSS) vulnerability in searcher.exe in Tornado Knowledge Retrieval System 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the p parameter in a root action.
network
tornado CWE-79
4.3