Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-4759
HistoryAug 09, 2013 - 9:55 p.m.

CVE-2013-4759

2013-08-0921:55:07
CWE-79
[email protected]
web.nvd.nist.gov
19
cve-2013-4759
cross-site scripting
xss
magnolia form module
magnolia cms
remote attackers
arbitrary web script
html

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.2%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Magnolia Form module 1.x before 1.4.7 and 2.x before 2.0.2 for Magnolia CMS allow remote attackers to inject arbitrary web script or HTML via the (1) username, (2) fullname, or (3) email parameter to magnoliaPublic/demo-project/members-area/registration.html.

Affected configurations

NVD
Node
magnolia-cmsmagnolia_form_moduleMatch1.4
OR
magnolia-cmsmagnolia_form_moduleMatch1.4.1
OR
magnolia-cmsmagnolia_form_moduleMatch1.4.2
OR
magnolia-cmsmagnolia_form_moduleMatch1.4.3
OR
magnolia-cmsmagnolia_form_moduleMatch1.4.4
OR
magnolia-cmsmagnolia_form_moduleMatch1.4.5
OR
magnolia-cmsmagnolia_form_moduleMatch1.4.6
OR
magnolia-cmsmagnolia_form_moduleMatch2.0
OR
magnolia-cmsmagnolia_form_moduleMatch2.0.1
AND
magnolia-cmsmagnolia_cmsMatch--community

Related

packetstorm 1
zdt 1
htbridge 1
securityvulns 3
nvd 1
prion 1
cvelist 1
packetstorm
packetstorm
Magnolia CMS 5.0.1 Community Edition Cross Site Scripting
2013-07-24 00:00:00
zdt
zdt
Magnolia CMS 5.0.1 Community Edition Cross Site Scripting
2013-07-26 00:00:00
htbridge
htbridge
Cross-Site Scripting (XSS) in Magnolia CMS
2013-07-03 00:00:00
securityvulns
securityvulns
Xymon Systems and Network Monitor - remote file deletion vulnerability
2013-07-29 00:00:00
Cross-Site Scripting (XSS) in Magnolia CMS
2013-07-29 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2013-07-29 00:00:00
nvd
nvd
CVE-2013-4759
2013-08-09 21:55:07
prion
prion
Cross site scripting
2013-08-09 21:55:00
cvelist
cvelist
CVE-2013-4759
2013-08-09 21:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.2%

JSON
Related for CVE-2013-4759
packetstorm1zdt1htbridge1securityvulns3nvd1prion1cvelist1