Dokeos Project - Dokeos CVE

Filtered by vendor Dokeos Project Subscribe

Filtered by product Dokeos

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2014-1877	1 Dokeos Project	1 Dokeos	2023-12-10	4.3 MEDIUM	N/A
Multiple cross-site scripting (XSS) vulnerabilities in Dokeos 2.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Phone, (2) Street, (3) Address line, (4) Zip code, or (5) City field to main/auth/profile.php; (6) Subject field to main/social/groups.php; or (7) Message body field to main/messages/view_message.php.

Vulnerabilities (CVE)