Unrated severityNVD Advisory· Published May 8, 2014· Updated Jun 17, 2026
CVE-2014-2689
CVE-2014-2689
Description
Cross-site scripting (XSS) vulnerability in Offiria 2.1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to installer/index.php.
Affected products
2Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.