{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-26T12:25:40.517","vulnerabilities":[{"cve":{"id":"CVE-2014-1403","sourceIdentifier":"cve@mitre.org","published":"2014-02-05T15:10:05.503","lastModified":"2026-06-17T00:04:51.443","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in name.html in easyXDM before 2.4.19 allows remote attackers to inject arbitrary web script or HTML via the location.hash value."},{"lang":"es","value":"La vulnerabilidad de tipo cross-site scripting (XSS) en el archivo name.html en easyXDM anterior a versiĆ³n 2.4.19, permite a los atacantes remotos inyectar script web o HTML arbitrario por medio del valor location.hash."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:easyxdm:easyxdm:*:*:*:*:*:*:*:*","versionEndIncluding":"2.4.18","matchCriteriaId":"A03638EF-B8BA-4F25-83E2-972C8F641F1F"},{"vulnerable":true,"criteria":"cpe:2.3:a:easyxdm:easyxdm:2.3.2:*:*:*:*:*:*:*","matchCriteriaId":"53EEA679-9A03-4AFC-A27F-93AAA0FB15A4"},{"vulnerable":true,"criteria":"cpe:2.3:a:easyxdm:easyxdm:2.3.3:*:*:*:*:*:*:*","matchCriteriaId":"28B5695A-43B0-4AB7-9ED7-509FBC10298D"},{"vulnerable":true,"criteria":"cpe:2.3:a:easyxdm:easyxdm:2.4.0:*:*:*:*:*:*:*","matchCriteriaId":"3F5A1366-9A0C-4420-9292-DE61EEE8648E"},{"vulnerable":true,"criteria":"cpe:2.3:a:easyxdm:easyxdm:2.4.1:*:*:*:*:*:*:*","matchCriteriaId":"0AF8D3B5-F102-4439-B74F-546D157BCEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:easyxdm:easyxdm:2.4.2:*:*:*:*:*:*:*","matchCriteriaId":"29C43A33-4066-459F-93D2-6A35301D460F"},{"vulnerable":true,"criteria":"cpe:2.3:a:easyxdm:easyxdm:2.4.3:*:*:*:*:*:*:*","matchCriteriaId":"E7E1F889-9AB2-4DE6-9FF0-ED15BB3896BA"},{"vulnerable":true,"criteria":"cpe:2.3:a:easyxdm:easyxdm:2.4.4:*:*:*:*:*:*:*","matchCriteriaId":"87CC89DB-95A7-4F6D-B305-BA76A12B5F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:easyxdm:easyxdm:2.4.5:*:*:*:*:*:*:*","matchCriteriaId":"64644A9D-9B5C-4643-8154-6FBB3ECE06C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:easyxdm:easyxdm:2.4.6:*:*:*:*:*:*:*","matchCriteriaId":"2907D6D9-3E7D-46F7-83F6-DD308966CA5C"}]}]}],"references":[{"url":"http://blog.kotowicz.net/2014/01/xssing-with-shakespeare-name-calling.html","source":"cve@mitre.org","tags":["Exploit"]},{"url":"http://osvdb.org/102803","source":"cve@mitre.org"},{"url":"http://seclists.org/fulldisclosure/2014/Feb/5","source":"cve@mitre.org","tags":["Exploit"]},{"url":"http://secunia.com/advisories/56634","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/65291","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/90876","source":"cve@mitre.org"},{"url":"https://github.com/oyvindkinsey/easyXDM/commit/a3194d32c25a0d27a10a47304eb9c9be93ffbf13#diff-6489956f1e1f52236929b4d33cbeb2db","source":"cve@mitre.org","tags":["Exploit","Patch"]},{"url":"https://github.com/oyvindkinsey/easyXDM/releases/tag/2.4.19","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://blog.kotowicz.net/2014/01/xssing-with-shakespeare-name-calling.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"http://osvdb.org/102803","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://seclists.org/fulldisclosure/2014/Feb/5","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"http://secunia.com/advisories/56634","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/65291","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/90876","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/oyvindkinsey/easyXDM/commit/a3194d32c25a0d27a10a47304eb9c9be93ffbf13#diff-6489956f1e1f52236929b4d33cbeb2db","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Patch"]},{"url":"https://github.com/oyvindkinsey/easyXDM/releases/tag/2.4.19","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}