Vulnerabilities > Easyxdm > Easyxdm > 2.4.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-14 | CVE-2013-5212 | Cross-site Scripting vulnerability in Easyxdm Cross-site Scripting (XSS) in EasyXDM before 2.4.18 allows remote attackers to inject arbitrary web script or html via the easyxdm.swf file. | 4.3 |
| 2014-02-05 | CVE-2014-1403 | Cross-Site Scripting vulnerability in Easyxdm Cross-site scripting (XSS) vulnerability in name.html in easyXDM before 2.4.19 allows remote attackers to inject arbitrary web script or HTML via the location.hash value. | 4.3 |