Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-4951
xss
mintboard 0.3
remote attacks
web script
html
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.9 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
77.9%
Multiple cross-site scripting (XSS) vulnerabilities in Mintboard 0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) pass parameter in views/login.php or (3) name or (4) pass parameter in views/signup.php.
Affected configurations
Node
mintboardmintboardMatch0.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| mintboard:mintboard | mintboard | eq | 0.3 |
Related
nvd
nvd
CVE-2013-4951
2013-07-29 23:27:50
cvelist
cvelist
CVE-2013-4951
2022-10-03 16:14:57
prion
prion
Cross site scripting
2013-07-29 23:27:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.9 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
77.9%
Related for CVE-2013-4951