CVE-2013-5118

Good for Enterprise <2.2.4.1659 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the Good for Enterprise app before 2.2.4.1659 for iOS allows remote attackers to inject arbitrary web script or HTML via an HTML e-mail message.

Exploits (1)

exploitdb WORKING POC

by Mario · textwebappshardware

https://www.exploit-db.com/exploits/28555

View Code ZIP pw:eip

References (2)

Core 2

Core References

Exploit mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2013-09/0114.html

Exploit x_refsource_misc

https://www.roblest.com/#research:CVE-2013-5118

Scores

EPSS 0.0041

EPSS Percentile 61.2%

Details

CWE

CWE-79

Status published

Products (15)

good/good_for_enterprise 1.9.8

good/good_for_enterprise 1.9.9

good/good_for_enterprise 1.9.10

good/good_for_enterprise 2.0.0

good/good_for_enterprise 2.0.1

good/good_for_enterprise 2.0.2

good/good_for_enterprise 2.0.3.1464

good/good_for_enterprise 2.1.2.1510

good/good_for_enterprise 2.1.3.1513

good/good_for_enterprise 2.1.4.1518

... and 5 more

Published Sep 25, 2013

Tracked Since Feb 18, 2026