3 matches found
CVE-2014-8674
Multiple Cross-Site Scripting XSS vulnerabilities exist in Simple Online Planning SOPlanning before 1.33 via the document.cookie in nbmois and mbligness and the debug GET parameter to export.php, which allows malicious users to execute arbitrary code...
CVE-2014-8674
SOPlanning (Simple Online Planning) is affected by multiple vulnerabilities in versions prior to 1.33. The CVE entries describe cross-site scripting via document.cookie in nb_mois and mb_ligness and through a debug GET parameter to export.php, enabling arbitrary code execution under XSS condition...
Simple Online Planning Tool 1.3.2 XSS / SQL Injection / Traversal
SOPlanning - Simple Online Planning Tool multiple vulnerabilities CVEs: CVE-2014-8673, CVE-2014-8674, CVE-2014-8675, CVE-2014-8676, CVE-2014-8677 Vendor: http://www.soplanning.org/ Product: SOPlanning - Simple Online Planning Version affected: 1.32 and prior Product description: SO Planning is an...