CVE-2016-10216 in ITDB DataBaseالمعلومات

الملخص

بحسب MITRE

An issue was discovered in IT ITems DataBase (ITDB) through 1.23. The vulnerability exists due to insufficient filtration of user-supplied data in the "value" HTTP POST parameter passed to the "itdb-1.23/js/DataTables-1.8.2/examples/examples_support/editable_ajax.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

09/02/2017

إفشاء

10/02/2017

الاعتدال

تمت الموافقة

إدخال

VDB-96797

CPE

جاهز

CWE

CWE-79 (مؤكد)

CVSS

6.1 (NVD)

EPSS

0.00836

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-10216
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-10216
CVE Details	https://www.cvedetails.com/cve/CVE-2016-10216/

التالي ▸نظرة عامة ◂ السابق

Do you need the next level of professionalism?

Upgrade your account now!