CVE-2014-2231
Synetics i-doit pro <1.2.5 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in the API in synetics i-doit pro before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via a property title.
Scores
EPSS
0.0026
EPSS Percentile
49.5%
Details
CWE
CWE-79
Status
published
Products (9)
i-doit/i-doit
< 1.2.4
i-doit/i-doit
i-doit/i-doit
i-doit/i-doit
i-doit/i-doit
i-doit/i-doit
i-doit/i-doit
i-doit/i-doit
n/a/n/a
Published
Feb 27, 2014
Tracked Since
Feb 18, 2026