Vulnerability CVE-2014-4853

Vulnerability CVE-2014-4853

Published: 2014-07-10

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Opendocman -> Opendocman

https://github.com/opendocman/opendocman/commit/d202ef3def8674be61a3e4ccbe28beba4953b7ce

https://github.com/opendocman/opendocman/issues/163

http://www.opendocman.com/opendocman-v1-2-7-3-release-notes

http://packetstormsecurity.com/files/127330/OpenDocMan-1.2.7.2-Cross-Site-Scripting.html