Lucene search
HistoryAug 14, 2013 - 1:50 p.m.
CVE-2013-4880
cve-2013-4880
cross-site scripting
xss
vulnerability
bigtree cms
nvd
5.6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.2%
Cross-site scripting (XSS) vulnerability in core/admin/modules/developer/modules/views/add.php in BigTree CMS 4.0 RC2 and earlier allows remote attackers to inject arbitrary web script or HTML via the module parameter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| bigtreecms:bigtree_cms | bigtreecms bigtree cms | eq | 4.0 |
Related
prion
prion
Cross site scripting
2013-08-14 13:50:00
zdt
zdt
BigTree CMS 4.0 RC2 - Multiple Vulnerabilities
2013-08-08 00:00:00
packetstorm
packetstorm
BigTree CMS 4.0 RC2 XSS / CSRF / SQL Injection
2013-08-08 00:00:00
htbridge
htbridge
Multiple Vulnerabilities in BigTree CMS
2013-07-17 00:00:00
securityvulns
securityvulns
Multiple Vulnerabilities in BigTree CMS
2013-09-09 00:00:00
exploitpack
exploitpack
BigTree CMS 4.0 RC2 - Multiple Vulnerabilities
2013-08-08 00:00:00
openvas
openvas
BigTree CMS Multiple Vulnerabilities
2013-08-19 00:00:00
exploitdb
exploitdb
BigTree CMS 4.0 RC2 - Multiple Vulnerabilities
2013-08-08 00:00:00
5.6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.2%
Related for CVE-2013-4880