Vulnerabilities

CVE-2014-8674

by Fred · 06/01/2020

Multiple Cross-Site Scripting (XSS) vulnerabilities exist in Simple Online Planning (SOPlanning) before 1.33 via the document.cookie in nb_mois and mb_ligness and the debug GET parameter to export.php, which allows malicious users to execute arbitrary code.

Date published : 2020-01-06

http://packetstormsecurity.com/files/132654/Simple-Online-Planning-Tool-1.3.2-XSS-SQL-Injection-Traversal.html

http://seclists.org/fulldisclosure/2015/Jul/44

Similar

Tags: Cybersecurity Alert