BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
CVE-2014-1223 - Cross-site Scripting in Telligent Evolution Feb 21 2014 05:36PM
Portcullis Advisories (advisories portcullis-security com)
Vulnerability title: Cross-site Scripting in Telligent Evolution
CVE: CVE-2014-1223
Vendor: Telligent
Product: Evolution
Affected version: 7.5.0.32466
Fixed version: 7.6.7.36651
Reported by: Jerzy Kramarz

Details:
It is possible for an attacker to inject JavaScript by manipulating the
'msg' paramet...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus