Lucene search
HistoryJul 03, 2012 - 10:55 p.m.
CVE-2012-3831
cve-2012-3831
cross-site scripting
xss
decoda
web script
html
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.9 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
52.0%
Cross-site scripting (XSS) vulnerability in decoda/templates/video.php in Decoda before 3.3.1 allows remote attackers to inject arbitrary web script or HTML via multiple URLs in an img tag.
Affected configurations
Node
milesjdecodaRange≤3.3
ORmilesjdecodaMatch2.2
ORmilesjdecodaMatch2.3
ORmilesjdecodaMatch2.4
ORmilesjdecodaMatch2.5
ORmilesjdecodaMatch2.6
ORmilesjdecodaMatch2.7
ORmilesjdecodaMatch2.8
ORmilesjdecodaMatch2.9
ORmilesjdecodaMatch3.0
ORmilesjdecodaMatch3.1
ORmilesjdecodaMatch3.2
References
Social References
More
Related
cvelist
cvelist
CVE-2012-3831
2012-07-03 22:00:00
nvd
nvd
CVE-2012-3831
2012-07-03 22:55:02
prion
prion
Cross site scripting
2012-07-03 22:55:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.9 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
52.0%
Related for CVE-2012-3831