Vulnerabilities > Xaraya > Xaraya > 2.4.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-02-05 | CVE-2013-3639 | Cross-Site Scripting vulnerability in Xaraya 2.4.0 Multiple cross-site scripting (XSS) vulnerabilities in Xaraya 2.4.0-b1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) id, (2) interface, (3) name, or (4) tabmodule parameter to index.php. | 4.3 |