2 matches found
CVE-2014-1403
CVE-2014-1403 affects the easyXDM library (name.html) with a DOM XSS in the location.hash parameter, allowing an attacker to inject scripts run in the hosting domain’s context. The vulnerability is present in easyXDM prior to version 2.4.19; exploitation would require parsing/building a malicious...
easyXDM Library Cross Site Scripting
Affected products ================= easyXDM library 2.4.19 - http://easyxdm.net/wp/ easyXDM is a Javascript library that enables you as a developer to easily work around the limitation set in place by the Same Origin Policy, in turn making it easy to communicate and expose javascript API's across...