2 matches found
CVE-2014-2260
Cross-site scripting XSS vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via the command field in the Cron functionality...
CVE-2014-2260
The provided Connected documents confirm CVE-2014-2260 affects Ajenti 1.2.13, with an XSS vulnerability in plugins/main/content/js/ajenti.coffee that allows remote authenticated users to inject arbitrary web script or HTML via the command field in Cron. The root cause is inadequate input handling...