Vulnerabilities (CVE)

Filtered by vendor Storytlr Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-100037 1 Storytlr 1 Storytlr 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Storytlr 1.3.dev and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to archives/.
CVE-2014-100038 1 Storytlr 1 Storytlr 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Storytlr 1.3.dev and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter to search/.