Cross-Site Scripting (XSS) Vulnerability in i-doit 1.14.2

Cross-Site Scripting (XSS) Vulnerability in i-doit 1.14.2

CVE-2020-13825 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A cross-site scripting (XSS) vulnerability in i-doit 1.14.2 allows remote attackers to inject arbitrary web script or HTML via the viewMode, tvMode, tvType, objID, catgID, objTypeID, or editMode parameter.

Learn more about our Web App Pen Testing.