CVE-2014-2965
03.07.2014, 14:55
Cross-site scripting (XSS) vulnerability in auth-settings-x.php in SpamTitan before 6.04 allows remote attackers to inject arbitrary web script or HTML via the sortdir parameter.
| Vendor | Product | Version |
|---|---|---|
| spamtitan | spamtitan | 𝑥 ≤ 6.03 |
| spamtitan | spamtitan | 5.04 |
| spamtitan | spamtitan | 5.05 |
| spamtitan | spamtitan | 5.06 |
| spamtitan | spamtitan | 5.07 |
| spamtitan | spamtitan | 5.08 |
| spamtitan | spamtitan | 5.10 |
| spamtitan | spamtitan | 5.11 |
| spamtitan | spamtitan | 5.12 |
| spamtitan | spamtitan | 5.13 |
| spamtitan | spamtitan | 6.00 |
| spamtitan | spamtitan | 6.01 |
𝑥
= Vulnerable software versions
References