CVE-2010-2014

Name of the Vulnerable Software and Affected Versions LiSK CMS version 4.4

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the cl or possibly id parameter in the cp/list content.php file.

Recommendations For LiSK CMS version 4.4, update to a version that fixes this issue, as using the cl or id parameter in the cp/list content.php file can lead to arbitrary web script or HTML injection. At the moment, there is no information about a newer version that contains a fix for this vulnerability.