The Jamroom Network

development and support for all jamroom projects

XSS vulnerability in Search module

closed
brian
created by:  brian
issue type:  bug
issue status:  closed
issue owner:  brian


Issue:



The Search module version 1.1.0 and older has an XXS (cross site scripting) vulnerability as reported here:

https://www.htbridge.com/advisory/HTB23184

This has been fixed in Search module 1.1.1 - all sites should update to the latest search module ASAP.

Resolution:



This has been fixed in Search 1.1.1:

http://test.jamroom.net/the-jamroom-network/networkmarket/43/search

Share This

Tags