Sign in Subscribe

← All vendors

Vendor

Formalms

Products

1

CVEs

1

Across products

1

Status

Private

Products

1

Formalms
1 CVE

Recent CVEs

1

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2014-5257		0.00	—	0.00		Nov 6, 2014	Multiple cross-site scripting (XSS) vulnerabilities in Forma Lms before 1.2.1 p01 allow remote attackers to inject arbitrary web script or HTML via the (1) id_custom parameter in an amanmenu request or (2) id_game parameter in an alms/games/edit request to appCore/index.php.

CVE-2014-5257Nov 6, 2014
risk 0.00cvss —epss 0.00
Multiple cross-site scripting (XSS) vulnerabilities in Forma Lms before 1.2.1 p01 allow remote attackers to inject arbitrary web script or HTML via the (1) id_custom parameter in an amanmenu request or (2) id_game parameter in an alms/games/edit request to appCore/index.php.