VYPR
← All advisories
Medium severity6.1NVD Advisory· Published Jun 23, 2017· Updated May 13, 2026

CVE-2017-9356

CVE-2017-9356

Description

Sitecore.NET 7.1 through 7.2 has a Cross Site Scripting Vulnerability via the searchStr parameter to the /Search-Results URI.

Affected products

2
  • Sitecore/Sitecore.net2 versions
    cpe:2.3:a:sitecore:sitecore.net:7.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sitecore:sitecore.net:7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:sitecore:sitecore.net:7.2:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.