Lucene search
HistoryNov 19, 2013 - 4:49 a.m.
CVE-2013-4519
cve-2013-4519
xss
vulnerabilities
review board
web script
html
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6.7 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
68.3%
Multiple cross-site scripting (XSS) vulnerabilities in Review Board 1.6.x before 1.6.21 and 1.7.x before 1.7.17 allow remote attackers to inject arbitrary web script or HTML via the (1) Branch field or (2) caption of an uploaded file.
Affected configurations
Node
reviewboardreview_boardMatch1.6
ORreviewboardreview_boardMatch1.6beta1
ORreviewboardreview_boardMatch1.6beta2
ORreviewboardreview_boardMatch1.6rc1
ORreviewboardreview_boardMatch1.6rc2
ORreviewboardreview_boardMatch1.6.1
ORreviewboardreview_boardMatch1.6.2
ORreviewboardreview_boardMatch1.6.3
ORreviewboardreview_boardMatch1.6.4
ORreviewboardreview_boardMatch1.6.5
ORreviewboardreview_boardMatch1.6.6
ORreviewboardreview_boardMatch1.6.7
ORreviewboardreview_boardMatch1.6.8
ORreviewboardreview_boardMatch1.6.9
ORreviewboardreview_boardMatch1.6.10
ORreviewboardreview_boardMatch1.6.11
ORreviewboardreview_boardMatch1.6.12
ORreviewboardreview_boardMatch1.6.13
ORreviewboardreview_boardMatch1.6.14
ORreviewboardreview_boardMatch1.6.15
ORreviewboardreview_boardMatch1.6.16
ORreviewboardreview_boardMatch1.6.17
ORreviewboardreview_boardMatch1.6.18
ORreviewboardreview_boardMatch1.6.19
ORreviewboardreview_boardMatch1.6.20
ORreviewboardreview_boardMatch1.7.0
ORreviewboardreview_boardMatch1.7.0.1
ORreviewboardreview_boardMatch1.7.1
ORreviewboardreview_boardMatch1.7.2
ORreviewboardreview_boardMatch1.7.3
ORreviewboardreview_boardMatch1.7.4
ORreviewboardreview_boardMatch1.7.5
ORreviewboardreview_boardMatch1.7.6
ORreviewboardreview_boardMatch1.7.7
ORreviewboardreview_boardMatch1.7.8
ORreviewboardreview_boardMatch1.7.9
ORreviewboardreview_boardMatch1.7.10
ORreviewboardreview_boardMatch1.7.11
ORreviewboardreview_boardMatch1.7.12
ORreviewboardreview_boardMatch1.7.13
ORreviewboardreview_boardMatch1.7.14
ORreviewboardreview_boardMatch1.7.15
ORreviewboardreview_boardMatch1.7.16
Related
fedora
fedora
[SECURITY] Fedora 20 Update: python-djblets-0.7.23-1.fc20
2013-11-12 00:31:04
[SECURITY] Fedora 20 Update: ReviewBoard-1.7.17-1.fc20
2013-11-12 00:31:04
[SECURITY] Fedora 19 Update: python-djblets-0.7.23-1.fc19
2013-11-15 20:31:47
nessus
nessus
prion
prion
Cross site scripting
2013-11-19 04:49:00
nvd
nvd
CVE-2013-4519
2013-11-19 04:49:37
cvelist
cvelist
CVE-2013-4519
2013-11-15 20:00:00
openvas
openvas
Fedora Update for python-djblets FEDORA-2013-20814
2013-11-18 00:00:00
Fedora Update for python-djblets FEDORA-2013-20814
2013-11-18 00:00:00
Fedora Update for python-djblets FEDORA-2013-20817
2013-11-26 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6.7 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
68.3%
Related for CVE-2013-4519