CVE-2013-6163

Severity CVSS v4.0:
Pending analysis
Type:
CWE-79 Cross-Site Scripting (XSS)
Publication date:
14/11/2013
Last modified:
11/04/2025

Description

Multiple cross-site scripting (XSS) vulnerabilities in ProjeQtOr (formerly Project'Or RIA) before 4.0.0 allow remote attackers to inject arbitrary web script or HTML via the (1) type parameter to view/parameter.php, (2) p1value parameter to view/main.php, or (3) objectClass parameter to view/objectDetail.php.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:projeqtor:projeqtor:*:*:*:*:*:*:*:* 3.4.4 (including)
cpe:2.3:a:projeqtor:projeqtor:0.1.0:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:0.4.0:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:0.5.0:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:0.6.0:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:0.7.0:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:0.8.0:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:projeqtor:projeqtor:1.1.0:*:*:*:*:*:*:*