CVE-2013-3106 in Serverinformación

Resumen

por MITRE

Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange AppSuite and Server before 6.20.7 rev18, 6.22.0 before rev16, 6.22.1 before rev19, 7.0.1 before rev7, 7.0.2 before rev11, and 7.2.0 before rev8 allow remote attackers to inject arbitrary web script or HTML via (1) embedded VBScript, (2) object/data Base64 content, (3) a Content-Type header, or (4) UTF-16 encoding, aka Bug IDs 25957, 26237, 26243, and 26244.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservar

2013-04-17

Divulgación

2013-09-05

Moderación

aceptado

Artículo

VDB-64854

CPE

listo

EPSS

0.00942

KEV

no

Actividades

muy bajo

Fuentes

Interested in the pricing of exploits?

See the underground prices here!