Medium severity6.1NVD Advisory· Published Sep 12, 2017· Updated Jun 17, 2026
CVE-2017-14347
CVE-2017-14347
Description
NexusPHP 1.5.beta5.20120707 has XSS in the returnto parameter to fun.php in a delete action.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:nexusphp_project:nexusphp:1.5:beta5.20120707:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:nexusphp_project:nexusphp:1.5:beta5.20120707:*:*:*:*:*:*
- (no CPE)range: 1.5.beta5.20120707
Patches
Vulnerability mechanics
References
1- github.com/yangchonghui2017/cve/blob/master/1.txtnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.