CVE-2014-8266

2015-01-31T21:59:03
ID CVE-2014-8266
Type cve
Reporter NVD
Modified 2015-02-02T17:55:17

Description

Multiple cross-site scripting (XSS) vulnerabilities in the note-creation page in QPR Portal 2014.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2) body field.