CVE-2014-2710

Published: 2017-04-13T14:59Z

Last Modified: 2024-11-21T02:06Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Multiple cross-site scripting (XSS) vulnerabilities in Oliver (formerly Webshare) 1.3.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the (1) login page (index.php) or (2) login form (loginform-inc.php). > MITRE Terms of Use apply – see LICENSE‑MITRE.txt