Vulnerabilities > Oneorzero > Action AND Information Management System > 2.8.0

DATE CVE VULNERABILITY TITLE RISK
2012-10-01 CVE-2012-0989 Cross-Site Scripting vulnerability in Oneorzero Action and Information Management System 2.8.0
Cross-site scripting (XSS) vulnerability in OneOrZero AIMS 2.8.0 Trial Edition build231211 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.php.
network
oneorzero CWE-79
4.3
4.3