Cross-Site Scripting Vulnerability in Synetics i-doit Pro Software
CVE-2014-1237

Currently unrated

Key Information:

Vendor

I-doit

Status
I-doit
Vendor
CVE Published:
11 February 2014

What is CVE-2014-1237?

The Cross-Site Scripting vulnerability in Synetics i-doit Pro prior to version 1.2.4 allows remote attackers to inject arbitrary web scripts or HTML into the application via the 'call' parameter. This security flaw can lead to unauthorized actions on behalf of users, compromising the integrity of data and user trust. Organizations using affected versions should apply necessary patches to mitigate potential attacks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/56802
third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/65353
vdb-entryx_refsource_BID
http://www.i-doit.com/en/company/news/single-news/?tx_ttn...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.