CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2024

Cross-site scripting (XSS) vulnerability in classes/controller/error.php in Open Classifieds 2 before 2.1.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to shared-apartments-rooms/.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.3%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2014-2024

Openclassifieds » Open Classifieds 2 » Version: Any

cpe:2.3:a:openclassifieds:open_classifieds_2:*
Openclassifieds » Open Classifieds 2 » Version: 2.0

cpe:2.3:a:openclassifieds:open_classifieds_2:2.0
Openclassifieds » Open Classifieds 2 » Version: 2.0.1

cpe:2.3:a:openclassifieds:open_classifieds_2:2.0.1
Openclassifieds » Open Classifieds 2 » Version: 2.0.2

cpe:2.3:a:openclassifieds:open_classifieds_2:2.0.2
Openclassifieds » Open Classifieds 2 » Version: 2.0.3

cpe:2.3:a:openclassifieds:open_classifieds_2:2.0.3
Openclassifieds » Open Classifieds 2 » Version: 2.0.4

cpe:2.3:a:openclassifieds:open_classifieds_2:2.0.4
Openclassifieds » Open Classifieds 2 » Version: 2.0.5

cpe:2.3:a:openclassifieds:open_classifieds_2:2.0.5
Openclassifieds » Open Classifieds 2 » Version: 2.0.6

cpe:2.3:a:openclassifieds:open_classifieds_2:2.0.6
Openclassifieds » Open Classifieds 2 » Version: 2.0.7

cpe:2.3:a:openclassifieds:open_classifieds_2:2.0.7
Openclassifieds » Open Classifieds 2 » Version: 2.0.8

cpe:2.3:a:openclassifieds:open_classifieds_2:2.0.8
Openclassifieds » Open Classifieds 2 » Version: 2.1

cpe:2.3:a:openclassifieds:open_classifieds_2:2.1
Openclassifieds » Open Classifieds 2 » Version: 2.1.1

cpe:2.3:a:openclassifieds:open_classifieds_2:2.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2024

Products

Pricing

Contact Us