Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-4647
HistoryJan 13, 2011 - 7:00 p.m.

CVE-2010-4647

2011-01-1319:00:04
CWE-79
[email protected]
web.nvd.nist.gov
38
cve-2010-4647
cross-site scripting
xss
vulnerabilities
eclipse ide
help server

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.5 Medium

AI Score

Confidence

High

0.521 Medium

EPSS

Percentile

97.6%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the Help Server) in Eclipse IDE before 3.6.2 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) help/index.jsp or (2) help/advanced/content.jsp.

Affected configurations

NVD
Node
eclipseeclipse_ideRange3.6.1
OR
eclipseeclipse_ideMatch1.0
OR
eclipseeclipse_ideMatch2.0
OR
eclipseeclipse_ideMatch2.0.1
OR
eclipseeclipse_ideMatch2.0.2
OR
eclipseeclipse_ideMatch2.1
OR
eclipseeclipse_ideMatch2.1.1
OR
eclipseeclipse_ideMatch2.1.2
OR
eclipseeclipse_ideMatch2.1.3
OR
eclipseeclipse_ideMatch3.0
OR
eclipseeclipse_ideMatch3.0.1
OR
eclipseeclipse_ideMatch3.0.2
OR
eclipseeclipse_ideMatch3.1
OR
eclipseeclipse_ideMatch3.1.1
OR
eclipseeclipse_ideMatch3.1.2
OR
eclipseeclipse_ideMatch3.2
OR
eclipseeclipse_ideMatch3.2.1
OR
eclipseeclipse_ideMatch3.2.2
OR
eclipseeclipse_ideMatch3.3
OR
eclipseeclipse_ideMatch3.3.1
OR
eclipseeclipse_ideMatch3.3.1.1
OR
eclipseeclipse_ideMatch3.3.2
OR
eclipseeclipse_ideMatch3.4
OR
eclipseeclipse_ideMatch3.4.1
OR
eclipseeclipse_ideMatch3.4.2
OR
eclipseeclipse_ideMatch3.5
OR
eclipseeclipse_ideMatch3.5.1
OR
eclipseeclipse_ideMatch3.5.2
OR
eclipseeclipse_ideMatch3.6m1
OR
eclipseeclipse_ideMatch3.6m2
OR
eclipseeclipse_ideMatch3.6m3
OR
eclipseeclipse_ideMatch3.6m4
OR
eclipseeclipse_ideMatch3.6m5
OR
eclipseeclipse_ideMatch3.6m6
OR
eclipseeclipse_ideMatch3.6m7
OR
eclipseeclipse_ideMatch3.6rc1
OR
eclipseeclipse_ideMatch3.6rc2
OR
eclipseeclipse_ideMatch3.6rc3
OR
eclipseeclipse_ideMatch3.6rc4

Related

oraclelinux 1
nessus 7
openvas 6
ubuntucve 2
cvelist 2
veracode 1
redhat 1
prion 2
nvd 2
debiancve 2
cve 1
ibm 1
oraclelinux
oraclelinux
eclipse security, bug fix, and enhancement update
2011-05-28 00:00:00
nessus
nessus
Fedora 13 : eclipse-3.5.2-4.fc13 (2010-18990)
2010-12-26 00:00:00
Oracle Linux 6 : eclipse (ELSA-2011-0568)
2023-09-07 00:00:00
RHEL 6 : eclipse (RHSA-2011:0568)
2011-05-20 00:00:00
openvas
openvas
Mandriva Update for eclipse MDVSA-2011:032 (eclipse)
2011-02-22 00:00:00
Mandriva Update for eclipse MDVSA-2011:032 (eclipse)
2011-02-22 00:00:00
Eclipse IDE < 3.6.2 Multiple XSS Vulnerabilities
2011-02-17 00:00:00
ubuntucve
ubuntucve
CVE-2010-4647
2011-01-13 00:00:00
CVE-2008-7271
2011-01-13 00:00:00
cvelist
cvelist
CVE-2010-4647
2011-01-13 18:35:00
CVE-2008-7271
2022-10-03 16:13:53
veracode
veracode
Cross-site Scripting (XSS)
2020-04-10 01:01:25
redhat
redhat
(RHSA-2011:0568) Low: eclipse security, bug fix, and enhancement update
2011-05-19 00:00:00
prion
prion
Cross site scripting
2011-01-13 19:00:00
Cross site scripting
2011-01-13 19:00:00
nvd
nvd
CVE-2010-4647
2011-01-13 19:00:04
CVE-2008-7271
2011-01-13 19:00:01
debiancve
debiancve
CVE-2010-4647
2011-01-13 19:00:00
CVE-2008-7271
2011-01-13 19:00:00
cve
cve
CVE-2008-7271
2022-10-03 16:13:53
ibm
ibm
Security Bulletin: Multiple security vulnerabilities in IBM Sales Center for WebSphere Commerce (CVE-2008-7271, CVE-2010-4647, CVE-2012-0186, CVE-2012-0191, CVE-2012-2159, CVE-2012-2161)
2022-09-26 05:45:55

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.5 Medium

AI Score

Confidence

High

0.521 Medium

EPSS

Percentile

97.6%

JSON
Related for CVE-2010-4647
oraclelinux1nessus7openvas6ubuntucve2cvelist2veracode1redhat1prion2nvd2debiancve2cve1ibm1