CVE-2010-1997 in Saurusinformazioni

Riassunto

di MITRE

Cross-site scripting (XSS) vulnerability in admin/edit.php in Saurus CMS 4.7.0 allows remote authenticated users, with "Article list" edit privileges, to inject arbitrary web script or HTML via the pealkiri parameter.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

20/05/2010

Divulgazione

20/05/2010

Moderazione

accettato

Voce

VDB-53290

CPE

pronto

CWE

CWE-79 (confermato)

Sfruttamento

Scaricare

CVSS

2.1 (NVD)

EPSS

0.03378

KEV

Attività

molto basso

Settore

Lawfirm, Hostingprovider, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2010-1997
NVD	https://nvd.nist.gov/vuln/detail/CVE-2010-1997
CVE Details	https://www.cvedetails.com/cve/CVE-2010-1997/

◂ Precedente Visione D'ensemble Il prossimo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!