CVE-2013-5118

Good for Enterprise <2.2.4.1659 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the Good for Enterprise app before 2.2.4.1659 for iOS allows remote attackers to inject arbitrary web script or HTML via an HTML e-mail message.

Exploits (1)

exploitdb WORKING POC

by Mario · textwebappshardware

https://www.exploit-db.com/exploits/28555

View Code ZIP pw:eip

References (2)

[Exploit] http://archives.neohapsis.com/archives/bugtraq/2013-09/0114.html

[Exploit] https://www.roblest.com/#research:CVE-2013-5118

Scores

EPSS 0.0041

EPSS Percentile 60.8%

Details

CWE

CWE-79

Status published

Products (16)

good/good_for_enterprise < 2.2.3

good/good_for_enterprise

... and 6 more

Published Sep 25, 2013

Tracked Since Feb 18, 2026