DATABASE RESOURCES PRICING ABOUT US

{"id": "CVE-2011-3999", "vendorId": null, "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2011-3999", "description": "Cross-site scripting (XSS) vulnerability in the RSS/Atom feed-reader implementation in Iwate Portal Bar allows remote attackers to inject arbitrary web script or HTML via a crafted feed.", "published": "2011-11-09T20:55:00", "modified": "2011-11-16T05:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "accessVector": "NETWORK", "accessComplexity": "MEDIUM", "authentication": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "availabilityImpact": "NONE", "baseScore": 4.3}, "severity": "MEDIUM", "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3999", "reporter": "vultures@jpcert.or.jp", "references": ["http://jvn.jp/en/jp/JVN33861625/index.html", "http://jvndb.jvn.jp/jvndb/JVNDB-2011-000098"], "cvelist": ["CVE-2011-3999"], "immutableFields": [], "lastseen": "2022-03-23T12:36:13", "viewCount": 12, "enchantments": {"dependencies": {"references": [{"type": "jvn", "idList": ["JVN:33861625"]}], "rev": 4}, "score": {"value": 4.3, "vector": "NONE"}, "backreferences": {"references": [{"type": "jvn", "idList": ["JVN:33861625"]}]}, "exploitation": null, "vulnersScore": 4.3}, "_state": {"dependencies": 1659687063, "score": 1659761193, "affected_software_major_version": 1671558332}, "_internal": {}, "cna_cvss": {"cna": null, "cvss": {}}, "cpe": ["cpe:/a:ibc.co.jp:iwate_portal_bar:-"], "cpe23": ["cpe:2.3:a:ibc.co.jp:iwate_portal_bar:-:*:*:*:*:*:*:*"], "cwe": ["CWE-79"], "affectedSoftware": [{"cpeName": "ibc.co.jp:iwate_portal_bar", "version": "-", "operator": "eq", "name": "ibc.co.jp iwate portal bar"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:ibc.co.jp:iwate_portal_bar:-:*:*:*:*:*:*:*", "cpe_name": []}]}]}, "extraReferences": [{"url": "http://jvn.jp/en/jp/JVN33861625/index.html", "name": "JVN#33861625", "refsource": "JVN", "tags": []}, {"url": "http://jvndb.jvn.jp/jvndb/JVNDB-2011-000098", "name": "JVNDB-2011-000098", "refsource": "JVNDB", "tags": []}]}

{"jvn": [{"lastseen": "2021-12-28T23:21:14", "description": "Iwate Portal Bar is an add-on to Internet Explorer that adds a toolbar and provides multiple functions. The RSS/Atom feed reader function in Iwate Portal Bar is vulnerable to arbitrary script execution due to the improper processing during HTML page output based on feed information.\n\n ## Impact\n\nAn arbitrary script may be executed on the user's Internet Explorer. \n\n\n ## Solution\n\n**Do not use Iwate Portal Bar** \nPlease stop use of Iwate Portal Bar according to the information provided by the developer. \nThe developer has stopped distributing the product. \n\n\n ## Products Affected\n\n * Iwate Portal Bar \n\n", "cvss3": {}, "published": "2011-11-08T00:00:00", "type": "jvn", "title": "JVN#33861625: Iwate Portal Bar vulnerable to arbitrary script execution", "bulletinFamily": "info", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "NONE", "availabilityImpact": "NONE", "integrityImpact": "PARTIAL", "baseScore": 4.3, "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2011-3999"], "modified": "2011-11-08T00:00:00", "id": "JVN:33861625", "href": "http://jvn.jp/en/jp/JVN33861625/index.html", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}}]}