Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Blair Williams Subscribe
Filtered by product Pretty Link Lite
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-1636 3 Blair Williams, Civicrm, Joobi 3 Pretty Link Lite, Civicrm, Com Jnews 2017-08-28 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in open-flash-chart.swf in Open Flash Chart (aka Open-Flash Chart), as used in the Pretty Link Lite plugin before 1.6.3 for WordPress, JNews (com_jnews) component 8.0.1 for Joomla!, and CiviCRM 3.1.0 through 4.2.9 and 4.3.0 through 4.3.3, allows remote attackers to inject arbitrary web script or HTML via the get-data parameter.