CVE-2014-125108

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Dec 23, 2023

Updated: May 17, 2024

CWE ID 79

Summary

CVE-2014-125108 is a problematic vulnerability affecting w3c online-spellchecker-py up to 20140130. This issue involves unknown processing of the file spellchecker, resulting in a cross-site scripting (XSS) vulnerability. The attack can be initiated remotely, making it a potential security risk. The complexity and difficulty of exploiting this vulnerability are relatively high. A patch with the identifier d6c2c1fd8187c5db2a50425ff80694149e75d722e is available to mitigate the risk. VDB-248849 has been assigned to this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t41Auj
https://www.cve.org/CVERecord?id=CVE-2014-125108
https://nvd.nist.gov/vuln/detail/CVE-2014-125108

Back to Vulnerability Database

CVE-2014-125108

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations