Vulnerabilities > Tornado
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-11-28 | CVE-2008-5264 | Cross-Site Scripting vulnerability in Tornado Knowledge Retrieval System Cross-site scripting (XSS) vulnerability in searcher.exe in Tornado Knowledge Retrieval System 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the p parameter in a root action. | 4.3 |