CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-2231

Cross-site scripting (XSS) vulnerability in the API in synetics i-doit pro before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via a property title.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.7%

CVSS Severity

CVSS v2 Score 4.3

References

http://secunia.com/advisories/56931
http://www.i-doit.com/en/company/news/single-news/?tx_ttnews%5Btt_news%5D=141
http://secunia.com/advisories/56931
http://www.i-doit.com/en/company/news/single-news/?tx_ttnews%5Btt_news%5D=141

Products affected by CVE-2014-2231

I-Doit » I-Doit » Version: 1.0

cpe:2.3:a:i-doit:i-doit:1.0
I-Doit » I-Doit » Version: 1.0.2

cpe:2.3:a:i-doit:i-doit:1.0.2
I-Doit » I-Doit » Version: 1.1.1

cpe:2.3:a:i-doit:i-doit:1.1.1
I-Doit » I-Doit » Version: 1.1.2

cpe:2.3:a:i-doit:i-doit:1.1.2
I-Doit » I-Doit » Version: 1.2.1

cpe:2.3:a:i-doit:i-doit:1.2.1
I-Doit » I-Doit » Version: 1.2.2

cpe:2.3:a:i-doit:i-doit:1.2.2
I-Doit » I-Doit » Version: 1.2.3

cpe:2.3:a:i-doit:i-doit:1.2.3
I-Doit » I-Doit » Version: 1.2.4

cpe:2.3:a:i-doit:i-doit:1.2.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2231

Products

Pricing

Contact Us