CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

I-Doit: >> I-Doit >> 1.0 Security Vulnerabilities

CVE-2013-1413

Multiple cross-site scripting (XSS) vulnerabilities in synetics i-doit open 0.9.9-7, i-doit pro 1.0 and earlier, and i-doit pro 1.0.2 when the 'sanitize user input' flag is not enabled, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

4.3

EPSS Score

0.003

Published

2014-02-11

CVE-2014-1237

Cross-site scripting (XSS) vulnerability in synetics i-doit pro before 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the call parameter.

CVSS Score

4.3

EPSS Score

0.007

Published

2014-02-11

Page 2

Vulnerabilities

Vulnerable Software

I-Doit: >> I-Doit >> 1.0 Security Vulnerabilities

Products

Pricing

Contact Us