CVE-2014-2231CVE-2014-2231

Affected configuration(s):

cpe:/a:i-doit:i-doit:1.0::~~pro~~~
cpe:/a:i-doit:i-doit:1.0.2::~~pro~~~
cpe:/a:i-doit:i-doit:1.1.1::~~pro~~~
cpe:/a:i-doit:i-doit:1.1.2::~~pro~~~
cpe:/a:i-doit:i-doit:1.2.1::~~pro~~~
cpe:/a:i-doit:i-doit:1.2.2::~~pro~~~
cpe:/a:i-doit:i-doit:1.2.3::~~pro~~~
cpe:/a:i-doit:i-doit:1.2.4::~~pro~~~

Date published: 2014-02-27T10:55:15.687-05:00

Date last modified: 2014-02-28T10:27:20.240-05:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://www.i-doit.com/en/company/news/single-news/?tx_ttnews%5Btt_news%5D=141

Summary: Cross-site scripting (XSS) vulnerability in the API in synetics i-doit pro before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via a property title.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.