3 matches found
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-2353. Reason: This candidate is a duplicate of CVE-2014-2353. The wrong ID was used. Notes: All CVE users should reference CVE-2014-2353 instead of this candidate. All references and descriptions in this candidate have been...
CVE-2014-2353 Cogent DataHub XSS
Cross-site scripting XSS vulnerability in Cogent DataHub before 7.3.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2014-2353
Cogent DataHub before 7.3.5 is affected by a reflected cross-site scripting (XSS) vulnerability (CVE-2014-2353) due to inadequate input sanitization. The CVE entry documents that an attacker can inject arbitrary HTML/script via unspecified vectors, potentially affecting users’ browser sessions. T...