3 matches found
Avolve Software ProjectDox Multiple Vulnerability Disclosure
--------------------------------------------------------------------- Product: ProjectDox Vendor: Avolve Software Vulnerable Version: 8.1 Tested Version: 8.1 Vendor Notification: May 30, 2014 Public Disclosure: September 3, 2014 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference:...
CVE-2014-5129
Cross-site scripting XSS vulnerability in Avolve Software ProjectDox 8.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2014-5129
CVE-2014-5129: Avolve Software ProjectDox 8.1 suffers cross-site scripting (XSS). Descriptions indicate unsanitized input in ProjectDox may allow injection of arbitrary script/HTML via unspecified vectors. Connected docs confirm the product/version and vulnerability type but do not provide concre...