CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
Confidence
High
EPSS
Percentile
60.3%
Multiple cross-site scripting (XSS) vulnerabilities in the admin interface in EPiServer CMS through 6R2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Vendor | Product | Version | CPE |
---|---|---|---|
episerver | episerver_cms | 5.1.422.4 | cpe:2.3:a:episerver:episerver_cms:5.1.422.4:*:*:*:*:*:*:* |
episerver | episerver_cms | 5.1.422.122 | cpe:2.3:a:episerver:episerver_cms:5.1.422.122:*:*:*:*:*:*:* |
episerver | episerver_cms | 5.1.422.256 | cpe:2.3:a:episerver:episerver_cms:5.1.422.256:*:*:*:*:*:*:* |
episerver | episerver_cms | 5.1.422.267 | cpe:2.3:a:episerver:episerver_cms:5.1.422.267:*:*:*:*:*:*:* |
episerver | episerver_cms | 5.2.375.7 | cpe:2.3:a:episerver:episerver_cms:5.2.375.7:*:*:*:*:*:*:* |
episerver | episerver_cms | 5.2.375.133 | cpe:2.3:a:episerver:episerver_cms:5.2.375.133:*:*:*:*:*:*:* |
episerver | episerver_cms | 5.2.375.236 | cpe:2.3:a:episerver:episerver_cms:5.2.375.236:*:*:*:*:*:*:* |
episerver | episerver_cms | 6.0.530.0 | cpe:2.3:a:episerver:episerver_cms:6.0.530.0:*:*:*:*:*:*:* |
episerver | episerver_cms | 6.1.379.0 | cpe:2.3:a:episerver:episerver_cms:6.1.379.0:*:*:*:*:*:*:* |