CVE-2014-8330

Cross-site scripting (XSS) vulnerability in EspoCRM allows remote authenticated users to inject arbitrary web script or HTML via the Name field in a new account.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:espocrm:espocrm:-:*:*:*:*:*:*:*

Information

Published : 2014-10-20 09:55

Updated : 2014-10-22 16:35


NVD link : CVE-2014-8330

Mitre link : CVE-2014-8330


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

espocrm

  • espocrm