Cross-Site Scripting Flaw in ImpressCMS by ImpressCMS Team
CVE-2014-4036

Currently unrated

Key Information:

Vendor: Impresscms
Status: Impresscms
Vendor: CVE Published:; 11 June 2014

What is CVE-2014-4036?

A Cross-Site Scripting (XSS) vulnerability exists in the modules/system/admin.php component of ImpressCMS 1.3.6.1. This flaw enables remote attackers to inject arbitrary web scripts or HTML through a manipulated query parameter during a listimg action, potentially compromising user interactions and data integrity.

References

http://packetstormsecurity.com/files/126909/ImpressCMS-1....

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jun 11, 2014

CVE-2014-4036 Data

JSON

Impresscms

What is CVE-2014-4036?

References

Timeline