CVE-2014-2024

2014-03-14T10:55:04
ID CVE-2014-2024
Type cve
Reporter NVD
Modified 2018-10-09T15:43:05

Description

Cross-site scripting (XSS) vulnerability in classes/controller/error.php in Open Classifieds 2 before 2.1.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to shared-apartments-rooms/.