Lucene search
HistorySep 27, 2011 - 10:55 a.m.
CVE-2010-4852
cve
2010
4852
cross-site scripting
xss
vulnerability
eclime
login.php
remote attackers
web script
html
fail action
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.01 Low
EPSS
Percentile
83.6%
Cross-site scripting (XSS) vulnerability in login.php in Eclime 1.1.2b allows remote attackers to inject arbitrary web script or HTML via the reason parameter in a fail action.
Affected configurations
Node
eclimeeclimeMatch1.1.2b
| CPE | Name | Operator | Version |
|---|---|---|---|
| eclime:eclime | eclime | eq | 1.1.2b |
Related
prion
prion
Cross site scripting
2011-09-27 10:55:00
cvelist
cvelist
CVE-2010-4852
2011-09-27 10:00:00
nvd
nvd
CVE-2010-4852
2011-09-27 10:55:05
openvas
openvas
Eclime Multiple SQL Injection and Cross-site Scripting Vulnerabilities
2011-10-20 00:00:00
Eclime Multiple SQL Injection and Cross-site Scripting Vulnerabilities
2011-10-20 00:00:00
htbridge
htbridge
Multiple Vulnerabilities in Eclime
2010-11-16 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.01 Low
EPSS
Percentile
83.6%
Related for CVE-2010-4852