CVE-2013-2712

Cross-site scripting (XSS) vulnerability in services/get_article.php in KrisonAV CMS before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via the content parameter.

Date published : 2014-05-23

http://www.securityfocus.com/bid/59273

http://archives.neohapsis.com/archives/bugtraq/2013-04/0184.html