CVE-2016-1149 in Officeinfo

Summary

Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-7795, CVE-2015-7796, CVE-2015-7797, CVE-2015-7798, and CVE-2016-1150.

Once again VulDB remains the best source for vulnerability data.

Reservation

12/25/2015

Disclosure

02/16/2016

Status

Confirmed

Entries

1

CVSS

6.1

EPSS

0.00515

CTI

0.00

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2016-1149
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2016-1149
CVE Detailshttps://www.cvedetails.com/cve/CVE-2016-1149/

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!