| Max CVSS | 8.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2013-5693 | 4.3 |
Cross-site scripting (XSS) vulnerability in X2Engine X2CRM before 3.5 allows remote attackers to inject arbitrary web script or HTML via the model parameter to index.php/admin/editor.
|
11-10-2013 - 13:33 | 30-09-2013 - 22:55 | |
| CVE-2013-5692 | 8.5 |
Directory traversal vulnerability in X2Engine X2CRM before 3.5 allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the file parameter to index.php/admin/translationManager.
|
01-10-2013 - 20:01 | 30-09-2013 - 22:55 |