Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2011-4680
cve
2011
4680
xss
vulnerabilities
vtiger crm
remote attackers
web script
html
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
43.6%
Multiple cross-site scripting (XSS) vulnerabilities in the customer portal in vtiger CRM before 5.2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected configurations
Node
vtigervtiger_crmRange≤5.1.0
ORvtigervtiger_crmMatch1.0
ORvtigervtiger_crmMatch2.0
ORvtigervtiger_crmMatch2.0.1
ORvtigervtiger_crmMatch2.1
ORvtigervtiger_crmMatch3
ORvtigervtiger_crmMatch3.0
ORvtigervtiger_crmMatch3.0beta
ORvtigervtiger_crmMatch3.2
ORvtigervtiger_crmMatch4
ORvtigervtiger_crmMatch4beta
ORvtigervtiger_crmMatch4betait
ORvtigervtiger_crmMatch4rc1
ORvtigervtiger_crmMatch4.0
ORvtigervtiger_crmMatch4.0.1
ORvtigervtiger_crmMatch4.2
ORvtigervtiger_crmMatch4.2validation
ORvtigervtiger_crmMatch4.2patch1
ORvtigervtiger_crmMatch4.2.4
ORvtigervtiger_crmMatch5.0.0
ORvtigervtiger_crmMatch5.0.2
ORvtigervtiger_crmMatch5.0.3
ORvtigervtiger_crmMatch5.0.4
ORvtigervtiger_crmMatch5.0.4rc
ORvtigervtiger_crmMatch5.1.0rc
ORvtigervtiger_crmMatch5.2.1
Related
nvd
nvd
CVE-2011-4680
2011-12-07 19:55:02
cvelist
cvelist
CVE-2011-4680
2022-10-03 16:15:13
prion
prion
Cross site scripting
2011-12-07 19:55:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
43.6%
Related for CVE-2011-4680