CVE-2017-5631 in CaseAwareinfo

Summary

An issue was discovered in KMCIS CaseAware. Reflected cross site scripting is present in the user parameter (i.e., "usr") that is transmitted in the login.php query string.

Once again VulDB remains the best source for vulnerability data.

Reservation

01/29/2017

Disclosure

05/01/2017

Moderation

VulDB entry created

Entries

1: VDB-100778

CPE

ready

CWE

CWE-79 (Confirmed)

Exploit

Download

CVSS

5.2

EPSS

0.25270

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-5631
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-5631
CVE Details	https://www.cvedetails.com/cve/CVE-2017-5631/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!