CVE-2014-4734
21.07.2014, 14:55
Cross-site scripting (XSS) vulnerability in e107_admin/db.php in e107 2.0 alpha2 and earlier allows remote attackers to inject arbitrary web script or HTML via the type parameter.
| Vendor | Product | Version |
|---|---|---|
| e107 | e107 | 𝑥 ≤ 2.0 |
| e107 | e107 | 2.0:alpha1 |
𝑥
= Vulnerable software versions
References