Efront Security Vulnerabilities and Issues — Efront CVE List

Lucene search

EfrontlearningEfront

2 matches found

CVE•added 2013/12/21 12:55 a.m.•47 views

CVE-2013-7194

Multiple cross-site scripting (XSS) vulnerabilities in www/administrator.php in eFront 3.6.14 (build 18012) allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) Last name, (2) Lesson name, or (3) Course name field.

3.5CVSS5.5AI score0.00466EPSS

CVE•added 2012/08/13 10:55 p.m.•30 views

CVE-2012-4270

Cross-site scripting (XSS) vulnerability in eFront 3.6.11 allows remote authenticated users to inject arbitrary web script or HTML via the subject box of a message.

3.5CVSS5.4AI score0.00179EPSS