Beta

Report

Custom Search < 6.x-1.12,< 7.x-1.14 is vulnerable to Authenticated Cross Site Scripting (XSS) vulnerability

Authenticated
Published
2014-04-01

Authenticated Cross Site Scripting (XSS) vulnerability

CVE

https://www.cve.org/CVERecord?id=CVE-2014-7870

CVSS

Score:4.3

Severity:Medium

Version:< 6.x-1.12,< 7.x-1.14

There is a patch available in v6.x-1.12,7.x-1.14 and we strongly recommend you update to this version as soon as possible.