Lucene search
HistoryNov 03, 2010 - 1:37 p.m.
CVE-2010-3977
cve
2010
3977
xss
vulnerabilities
cforms
wordpress plugin
5.5 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
74.0%
Multiple cross-site scripting (XSS) vulnerabilities in wp-content/plugins/cforms/lib_ajax.php in cforms WordPress plugin 11.5 allow remote attackers to inject arbitrary web script or HTML via the (1) rs and (2) rsargs[] parameters.
| CPE | Name | Operator | Version |
|---|---|---|---|
| deliciousdays:cforms | deliciousdays cforms | eq | 11.5 |
Related
prion
prion
Cross site scripting
2010-11-03 13:37:00
seebug
seebug
WordPress cformsIIζδ»Άrsεrsargsεζ°θζ¬ζ³¨ε
₯ζΌζ΄
2010-11-03 00:00:00
nessus
nessus
cformsII Plugin for WordPress 'rs' Parameter XSS
2010-11-08 00:00:00
checkpoint_advisories
checkpoint_advisories
wpvulndb
wpvulndb
Cforms <= 13.1 - 'lib_ajax.php' Cross-Site Scripting (XSS)
2010-11-01 00:00:00
patchstack
patchstack
packetstorm
packetstorm
cforms WordPress Plugin Cross Site Scripting
2010-11-02 00:00:00
jvn
jvn
JVN#35256978: cforms II vulnerable to cross-site scripting
2012-02-15 00:00:00
securityvulns
securityvulns
openvas
openvas
5.5 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
74.0%
Related for CVE-2010-3977