CVE-2014-2260

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
3.5
LOW
Affected
1
PROJECT

Description

Cross-site scripting (XSS) vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via the command field in the Cron functionality.

Eugeny/ajenti
Eugeny/ajenti
DEPRECATED: Repo moved to https://github.com/ajenti/ajenti (into the `1.x` branch)
GitHubGitHub
208