Lucene search
HistoryFeb 06, 2007 - 2:28 a.m.
CVE-2007-0763
cve-2007-0763
cross-site scripting
xss
f3site 2.1
vulnerability
web script
html
autor field
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
5.7 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
74.1%
Cross-site scripting (XSS) vulnerability in the news comment functionality in F3Site 2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the Autor field.
Affected configurations
Node
f3sitef3siteMatch2.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| f3site:f3site | f3site | eq | 2.1 |
Related
prion
prion
Cross site scripting
2007-02-06 02:28:00
nvd
nvd
CVE-2007-0763
2007-02-06 02:28:00
cvelist
cvelist
CVE-2007-0763
2007-02-06 02:00:00
securityvulns
securityvulns
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
5.7 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
74.1%
Related for CVE-2007-0763