VYPR
Unrated severityNVD Advisory· Published Feb 11, 2014· Updated Jun 17, 2026

CVE-2014-1237

CVE-2014-1237

Description

Cross-site scripting (XSS) vulnerability in synetics i-doit pro before 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the call parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • I Doit/I Doit5 versions
    cpe:2.3:a:i-doit:i-doit:1.1.1:*:*:*:pro:*:*:*+ 4 more
    • cpe:2.3:a:i-doit:i-doit:1.1.1:*:*:*:pro:*:*:*
    • cpe:2.3:a:i-doit:i-doit:1.1.2:*:*:*:pro:*:*:*
    • cpe:2.3:a:i-doit:i-doit:1.2.1:*:*:*:pro:*:*:*
    • cpe:2.3:a:i-doit:i-doit:1.2.2:*:*:*:pro:*:*:*
    • cpe:2.3:a:i-doit:i-doit:*:*:*:*:pro:*:*:*range: <=1.2.3
  • Range: <1.2.4

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.