Lucene search

K
cveMitreCVE-2003-1539
HistoryJan 10, 2008 - 1:00 a.m.

CVE-2003-1539

2008-01-1001:00:00
CWE-79
mitre
web.nvd.nist.gov
21
cve-2003-1539
xss
vulnerability
onedotoh
simple file manager
sfm
remote attackers
web script
html

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

66.1%

Cross-site scripting (XSS) vulnerability in ONEdotOH Simple File Manager (SFM) before 0.21 allows remote attackers to inject arbitrary web script or HTML via (1) file names and (2) directory names.

Affected configurations

Nvd
Node
onedotohsimple_file_managerRange0.19
VendorProductVersionCPE
onedotohsimple_file_manager*cpe:2.3:a:onedotoh:simple_file_manager:*:*:*:*:*:*:*:*

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

66.1%

Related for CVE-2003-1539