Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8266

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2014-8266
Last Modified 02 Feb 2015 05:55:17
Published 31 Jan 2015 09:59:03
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-8266

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the note-creation page in QPR Portal 2014.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2) body field.

Vulnerable Systems

Application

  • Qpr Portal 2014.1.1


References

CERT-VN - VU#546340


Last Updated: 27 May 2016 11:07:39