CVE-2014-1456

Published: Mar 1, 2014Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in the login page in Open Web Analytics (OWA) before 1.5.6 allows remote attackers to inject arbitrary web script or HTML via the owa_user_id parameter to index.php.

Affected (47)

Products: Openwebanalytics: Open Web Analytics

Openwebanalytics

1 product

Open Web Analytics

Configuration A

47 vulnerable

Vulnerable Software	Affected Versions
Openwebanalytics Open Web Analytics	Up to 1.5.5
Openwebanalytics Open Web Analytics	Version 1.0.1
Openwebanalytics Open Web Analytics	Version 1.0.2
Openwebanalytics Open Web Analytics	Version 1.0.3
Openwebanalytics Open Web Analytics	Version 1.0.4
Openwebanalytics Open Web Analytics	Version 1.0.5
Openwebanalytics Open Web Analytics	Version 1.0.6
Openwebanalytics Open Web Analytics	Version 1.0.7
Openwebanalytics Open Web Analytics	Version 1.0.8
Openwebanalytics Open Web Analytics	Version 1.0.8 rc1
Openwebanalytics Open Web Analytics	Version 1.0.8 rc2
Openwebanalytics Open Web Analytics	Version 1.0.8 rc3
Openwebanalytics Open Web Analytics	Version 1.0.8 rc4
Openwebanalytics Open Web Analytics	Version 1.0.8 rc5
Openwebanalytics Open Web Analytics	Version 1.0
Openwebanalytics Open Web Analytics	Version 1.1.0
Openwebanalytics Open Web Analytics	Version 1.1.0 rc1
Openwebanalytics Open Web Analytics	Version 1.1.0 rc2
Openwebanalytics Open Web Analytics	Version 1.1.0 rc3
Openwebanalytics Open Web Analytics	Version 1.1.0 rc4
Openwebanalytics Open Web Analytics	Version 1.1.1
Openwebanalytics Open Web Analytics	Version 1.2.0
Openwebanalytics Open Web Analytics	Version 1.2.0 rc1
Openwebanalytics Open Web Analytics	Version 1.2.0 rc2
Openwebanalytics Open Web Analytics	Version 1.2.0 rc3
Openwebanalytics Open Web Analytics	Version 1.2.1
Openwebanalytics Open Web Analytics	Version 1.2.1 rc1
Openwebanalytics Open Web Analytics	Version 1.2.2
Openwebanalytics Open Web Analytics	Version 1.2.3
Openwebanalytics Open Web Analytics	Version 1.2.4
Openwebanalytics Open Web Analytics	Version 1.3.0
Openwebanalytics Open Web Analytics	Version 1.3.0 rc1
Openwebanalytics Open Web Analytics	Version 1.3.1
Openwebanalytics Open Web Analytics	Version 1.4.0
Openwebanalytics Open Web Analytics	Version 1.4.0 rc1
Openwebanalytics Open Web Analytics	Version 1.4.0 rc2
Openwebanalytics Open Web Analytics	Version 1.4.0 rc3
Openwebanalytics Open Web Analytics	Version 1.4.0 rc4
Openwebanalytics Open Web Analytics	Version 1.4.1
Openwebanalytics Open Web Analytics	Version 1.5.0
Openwebanalytics Open Web Analytics	Version 1.5.0 rc1
Openwebanalytics Open Web Analytics	Version 1.5.0 rc2
Openwebanalytics Open Web Analytics	Version 1.5.0 rc3
Openwebanalytics Open Web Analytics	Version 1.5.1
Openwebanalytics Open Web Analytics	Version 1.5.2
Openwebanalytics Open Web Analytics	Version 1.5.3
Openwebanalytics Open Web Analytics	Version 1.5.4