Multiple cross-site scripting (XSS) vulnerabilities in framework/common/webcommon/includes/messages.ftl in Apache OFBiz 11.04.01 before 11.04.05 and 12.04.01 before 12.04.04 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, which are not properly handled in a (1) result or (2) error message.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2014-08-22T14:00:00
Updated: 2018-10-09T18:57:01
Reserved: 2013-12-03T00:00:00
Link: CVE-2014-0232
JSON object: View
NVD Information
Status : Modified
Published: 2014-08-22T14:55:07.127
Modified: 2018-10-09T19:41:58.373
Link: CVE-2014-0232
JSON object: View
Redhat Information
No data.
CWE