CVE-2010-4616

Published: Dec 29, 2010Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in modules/content/admin/content.php in ImpressCMS 1.2.3 Final, and possibly other versions before 1.2.4, allows remote attackers to inject arbitrary web script or HTML via the quicksearch_ContentContent parameter.

Affected (35)

Products: Impresscms: Impresscms

Impresscms

1 product

Impresscms

Configuration A

35 vulnerable

Vulnerable Software	Affected Versions
Impresscms Impresscms	Up to 1.2.3
Impresscms Impresscms	Version 1.0 beta1
Impresscms Impresscms	Version 1.0 beta2
Impresscms Impresscms	Version 1.0 final
Impresscms Impresscms	Version 1.0 rc1
Impresscms Impresscms	Version 1.0 rc2
Impresscms Impresscms	Version 1.0 rc3
Impresscms Impresscms	Version 1.1.1 final
Impresscms Impresscms	Version 1.1.1 rc1
Impresscms Impresscms	Version 1.1.1 rc2
Impresscms Impresscms	Version 1.1.2 final
Impresscms Impresscms	Version 1.1.2 rc1
Impresscms Impresscms	Version 1.1.2 rc2
Impresscms Impresscms	Version 1.1.3 beta
Impresscms Impresscms	Version 1.1.3 final
Impresscms Impresscms	Version 1.1.3 rc1
Impresscms Impresscms	Version 1.1 alpha1
Impresscms Impresscms	Version 1.1 alpha2
Impresscms Impresscms	Version 1.1 beta1
Impresscms Impresscms	Version 1.1 final
Impresscms Impresscms	Version 1.1 rc1
Impresscms Impresscms	Version 1.1 rc2
Impresscms Impresscms	Version 1.1 rc3
Impresscms Impresscms	Version 1.2.1 beta
Impresscms Impresscms	Version 1.2.1 final
Impresscms Impresscms	Version 1.2.1 rc1
Impresscms Impresscms	Version 1.2.3 beta
Impresscms Impresscms	Version 1.2.3 rc1
Impresscms Impresscms	Version 1.2.3 rc2
Impresscms Impresscms	Version 1.2 alpha1
Impresscms Impresscms	Version 1.2 alpha2
Impresscms Impresscms	Version 1.2 beta
Impresscms Impresscms	Version 1.2 final
Impresscms Impresscms	Version 1.2 rc1
Impresscms Impresscms	Version 1.2 rc2