CVE-2014-8304

Name of the Vulnerable Software and Affected Versions In-Portal CMS versions 5.2.0 and earlier

Description A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via the next template parameter to "admin/index.php".

Recommendations For In-Portal CMS versions 5.2.0 and earlier, update to a version later than 5.2.0 to resolve the issue.