Lucene search
MitreCVE-2011-1427HistoryMar 15, 2011 - 5:55 p.m.
CVE-2011-1427
2011-03-1517:55:05
CWE-79
mitre
web.nvd.nist.gov
30
cve
2011
1427
cross-site scripting
xss
kodak insite
vulnerabilities
remote attackers
web script
html
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.002
Percentile
59.1%
Multiple cross-site scripting (XSS) vulnerabilities in Kodak InSite 5.5.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Language parameter to Pages/login.aspx, (2) HeaderWarning parameter to Troubleshooting/DiagnosticReport.asp, or (3) User-Agent header to troubleshooting/speedtest.asp.
Affected configurations
Node
kodakinsiteMatch5.5.2
Related
cvelist
cvelist
CVE-2011-1427
2011-03-15 17:00:00
exploitdb
exploitdb
openvas
openvas
Kodak InSite <= 6.0 Multiple XSS Vulnerabilities - Active Check
2011-03-22 00:00:00
prion
prion
Cross site scripting
2011-03-15 17:55:00
nvd
nvd
CVE-2011-1427
2011-03-15 17:55:05
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.002
Percentile
59.1%
Related for CVE-2011-1427