Lucene search
HistoryDec 26, 2008 - 5:30 p.m.
CVE-2008-5729
aist netcat
xss
vulnerabilities
remote attackers
web script
html
form parameter
control parameter
fckeditor
neditor.php
path parameter
admin
siteinfo
iframe.inc.php
5.8 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
60.2%
Multiple cross-site scripting (XSS) vulnerabilities in AIST NetCat 3.12 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) form and (2) control parameters to FCKeditor/neditor.php, and the (3) path parameter to admin/siteinfo/iframe.inc.php.
Affected configurations
Node
netcatnetcatRange≤3.12
ORnetcatnetcatMatch1.1
ORnetcatnetcatMatch2.0
ORnetcatnetcatMatch2.1
ORnetcatnetcatMatch2.2
ORnetcatnetcatMatch2.3
ORnetcatnetcatMatch2.4
ORnetcatnetcatMatch3.0
Related
cvelist
cvelist
CVE-2008-5729
2008-12-26 17:08:00
nvd
nvd
CVE-2008-5729
2008-12-26 17:30:00
prion
prion
Cross site scripting
2008-12-26 17:30:00
5.8 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
60.2%
Related for CVE-2008-5729