Shodan
Vulnerabilities
Vulnerable Software
Formalms:  >> Formalms  >> 1.2.1  Security Vulnerabilities
CVE-2014-5257
Multiple cross-site scripting (XSS) vulnerabilities in Forma Lms before 1.2.1 p01 allow remote attackers to inject arbitrary web script or HTML via the (1) id_custom parameter in an amanmenu request or (2) id_game parameter in an alms/games/edit request to appCore/index.php.
CVSS Score
4.3
EPSS Score
0.004
Published
2014-11-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved