CVE-2013-5749

Publication date

2014-05-12 14:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in management/prioritize_planning.php in SimpleRisk before 20130916-001 allows remote attackers to inject arbitrary web script or HTML via the new_project parameter.