Cross-Site Scripting Vulnerabilities in i-doit by Synetics
CVE-2013-1413

Currently unrated

Key Information:

Vendor

I-doit

Status
I-doit
Vendor
CVE Published:
11 February 2014

What is CVE-2013-1413?

Multiple cross-site scripting (XSS) vulnerabilities exist in the i-doit application by Synetics. These vulnerabilities occur when the 'sanitize user input' flag is disabled, presenting a risk for remote attackers who can exploit this flaw to inject arbitrary web scripts or HTML through various unspecified vectors. Users of affected versions, including i-doit open 0.9.9-7 and both i-doit pro versions, should take immediate action to secure their installations against potential attacks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.csnc.ch/en/modules/news/news_0076.html_5335608...
x_refsource_MISC
http://secunia.com/advisories/52415
third-party-advisoryx_refsource_SECUNIA
http://seclists.org/fulldisclosure/2013/Mar/0
mailing-listx_refsource_FULLDISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.