CVE-2013-3106 in Serverinformazioni

Riassunto

di MITRE

Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange AppSuite and Server before 6.20.7 rev18, 6.22.0 before rev16, 6.22.1 before rev19, 7.0.1 before rev7, 7.0.2 before rev11, and 7.2.0 before rev8 allow remote attackers to inject arbitrary web script or HTML via (1) embedded VBScript, (2) object/data Base64 content, (3) a Content-Type header, or (4) UTF-16 encoding, aka Bug IDs 25957, 26237, 26243, and 26244.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Prenotare

17/04/2013

Divulgazione

05/09/2013

Moderazione

accettato

CPE

pronto

EPSS

0.00942

KEV

no

Attività

molto basso

Fonti

Interested in the pricing of exploits?

See the underground prices here!