Description The URL parameters accepted by forum search were not limited to the allowed parameters. Remediation References CVE-2024-25979 Related Vulnerabilities Internet Information Services Other Vulnerability (CVE-2011-5279) MySQL CVE-2014-6559 Vulnerability (CVE-2014-6559) WordPress Cross-Site Request Forgery (0.70 - 3.6.1) WordPress 4.1.x Cross-Site Scripting Vulnerability (4.1 - 4.1.8) Apache 2.x version older than 2.0.45 Severity Medium Classification CVE-2024-25979 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Tags Missing Update Known Vulnerabilities