CVE-2014-1877
CVE-2014-1877 : Multiple cross-site scripting (XSS) vulnerabilities in Dokeos 2.1.1 allow remote attackers to inject arbitrary web script or HTML via user-supplied input in specific fields: (1) Phone, (2) Street, (3) Address line, (4) Zip code, (5) City (main/auth/profile.php); (6) Subject (main/...