Lucene search
HistoryOct 22, 2012 - 11:55 p.m.
CVE-2012-5169
cve-2012-5169
cross-site scripting
xss vulnerabilities
atutor acontent
web security
nvd
5.7 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.9%
Multiple cross-site scripting (XSS) vulnerabilities in file_manager/preview_top.php in ATutor AContent before 1.2-2 allow remote attackers to inject arbitrary web script or HTML via the (1) pathext, (2) popup, (3) framed, or (4) file parameter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| atutor:acontent | atutor acontent | le | 1.2 |
Related
prion
prion
Cross site scripting
2012-10-22 23:55:00
htbridge
htbridge
Multiple vulnerabilities in AContent
2012-09-26 00:00:00
exploitpack
exploitpack
ATutor 1.2 - Multiple Vulnerabilities
2012-10-22 00:00:00
packetstorm
packetstorm
ATutor AContent 1.2 XSS / Authentication / SQL Injection
2012-10-18 00:00:00
securityvulns
securityvulns
Multiple vulnerabilities in AContent
2012-10-22 00:00:00
exploitdb
exploitdb
ATutor 1.2 - Multiple Vulnerabilities
2012-10-22 00:00:00
5.7 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.9%
Related for CVE-2012-5169