VYPR

Search Module

by Jamroom

CVEs (2)

  • CVE-2014-5098Oct 20, 2014
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in the Search module before 1.2.2 in Jamroom allows remote attackers to inject arbitrary web script or HTML via the query string to search/results/.

  • CVE-2013-6804Dec 5, 2013
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in the Search module before 1.1.1 for Jamroom allows remote attackers to inject arbitrary web script or HTML via the search_string parameter to search/results/all/1/4.