4 matches found
Cross-Site Scripting (XSS) in Open Classifieds
Advisory ID: HTB23204 Product: Open Classifieds Vendor: Open Classifieds Team Vulnerable Versions: 2-2.1.2 and probably prior Tested Version: 2-2.1.2 Advisory Publication: February 19, 2014 without technical details Vendor Notification: February 19, 2014 Vendor Patch: February 20, 2014 Public...
CVE-2014-2024
The CVE-2014-2024 issue is a real XSS in Open Classifieds 2.x (pre-2.1.3), caused by insufficient sanitisation of user data in the URI to /shared-apartments-rooms/. Open Classifieds 2-2.1.2 (and prior) are affected; a crafted link can execute arbitrary HTML/script in the context of a logged-in us...
Open Classifieds 2-2.1.2 Cross Site Scripting Vulnerability
Open Classifieds version 2-2.1.2 suffers from a cross site scripting vulnerability. Product: Open Classifieds Vendor: Open Classifieds Team Vulnerable Versions: 2-2.1.2 and probably prior Tested Version: 2-2.1.2 Advisory Publication: February 19, 2014 without technical details Vendor Notification...
Open Classifieds 2-2.1.2 Cross Site Scripting
Advisory ID: HTB23204 Product: Open Classifieds Vendor: Open Classifieds Team Vulnerable Versions: 2-2.1.2 and probably prior Tested Version: 2-2.1.2 Advisory Publication: February 19, 2014 without technical details Vendor Notification: February 19, 2014 Vendor Patch: February 20, 2014 Public...