FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

pivotx -- cross-site scripting (XSS) vulnerability

Affected packages
pivotx < 2.3.9

Details

VuXML ID 14d846d6-27b3-11e5-a15a-50af736ef1c0
Discovery 2014-04-15
Entry 2015-07-11

pivotx reports:

cross-site scripting (XSS) vulnerability in the nickname (and possibly the email) field. Mitigated by the fact that an attacker must have a PivotX account.

References

CVE Name CVE-2014-0341