VYPR
Unrated severityNVD Advisory· Published Feb 11, 2014· Updated Jun 16, 2026

CVE-2013-1413

CVE-2013-1413

Description

Multiple cross-site scripting (XSS) vulnerabilities in synetics i-doit open 0.9.9-7, i-doit pro 1.0 and earlier, and i-doit pro 1.0.2 when the 'sanitize user input' flag is not enabled, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • I Doit/I Doit3 versions
    cpe:2.3:a:i-doit:i-doit:0.9.9:7:*:*:open:*:*:*+ 2 more
    • cpe:2.3:a:i-doit:i-doit:0.9.9:7:*:*:open:*:*:*
    • cpe:2.3:a:i-doit:i-doit:1.0.2:*:*:*:pro:*:*:*
    • cpe:2.3:a:i-doit:i-doit:*:*:*:*:pro:*:*:*range: <=1.0
  • Range: <= 1.0.2
  • Range: = 0.9.9-7

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.