Lucene search
CVE-2012-2918
Cross-site scripting (XSS) vulnerability in Chevereto 1.9
Show more
| Reporter | Title | Published | Views | Family All 3 |
|---|---|---|---|---|
 | Cross site scripting | 21 May 201222:55 | – | prion |
 | CVE-2012-2918 | 21 May 201222:00 | – | cvelist |
 | CVE-2012-2918 | 21 May 201222:55 | – | nvd |
| Source | Link |
|---|---|
| packetstormsecurity | www.packetstormsecurity.org/files/112585/Chevreto-Upload-Script-Cross-Site-Scripting-User-Enumeration.html |
| securityfocus | www.securityfocus.com/bid/53448 |
| exchange | www.exchange.xforce.ibmcloud.com/vulnerabilities/75476 |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| v | query param | /Upload/engine.php | Cross-site scripting (XSS) vulnerability allowing remote attackers to inject arbitrary web script or HTML. | CWE-79 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo21 May 2012 22:55Current
5.9Medium risk
Vulners AI Score5.9
CVSS24.3
EPSS0.02187