CVE-2014-1237 in i-doitinformation

Résumé

par MITRE

Cross-site scripting (XSS) vulnerability in synetics i-doit pro before 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the call parameter.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

08/01/2014

Divulgation

11/02/2014

Modérer

accepté

Entrée

VDB-66363

CPE

prêt

CWE

CWE-79 (confirmé)

CVSS

4.3 (NVD)

EPSS

0.00698

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-1237
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-1237
CVE Details	https://www.cvedetails.com/cve/CVE-2014-1237/

◂ Précédent Aperçu Suivant ▸

Do you need the next level of professionalism?

Upgrade your account now!