CVE-2012-1296 in Elefantcmsinfo

Zusammenfassung

von MITRE

Multiple cross-site scripting (XSS) vulnerabilities in apps/admin/handlers/preview.php in Elefant CMS 1.0.x before 1.0.2-Beta and 1.1.x before 1.1.5-Beta allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2) body parameter to admin/preview.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

23.02.2012

Veröffentlichung

26.08.2012

Moderieren

akzeptiert

Eintrag

VDB-61894

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

4.3 (VulDB)

EPSS

0.00516

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-1296
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-1296
CVE Details	https://www.cvedetails.com/cve/CVE-2012-1296/

◂ Zurück Übersicht Weiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!