CVE-2012-5700 in Baby Gekkoinformation

Résumé (Anglaise)

Multiple cross-site scripting (XSS) vulnerabilities in Baby Gekko before 1.2.2f allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to admin/index.php or the (2) username or (3) password parameter in blocks/loginbox/loginbox.template.php to index.php. NOTE: some of these details are obtained from third party information.

Réserver

31/10/2012

Divulgation

22/09/2014

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
71435Baby Gekko cross site scripting79ÉlevéCorrectif officielCVE-2012-5700

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!