Lucene search
CVE-2013-6042
Cross-site scripting vulnerability in Softaculous Webuzo before 2.1.
Show more
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | CVE-2013-6042 | 15 Nov 201320:00 | – | cvelist |
 | Cross site scripting | 19 Nov 201304:50 | – | prion |
 | CVE-2013-6042 | 19 Nov 201304:50 | – | nvd |
 | Webuzo 2.1.3 - Multiple Vulnerabilities | 28 Feb 201400:00 | – | exploitpack |
 | Webuzo <= 2.1.3 Cookie Value Handling Remote Command Injection Vulnerability | 13 Nov 201300:00 | – | openvas |
 | Webuzo 2.1.3 - Multiple Vulnerabilities | 28 Feb 201400:00 | – | zdt |
 | Webuzo 2.1.3 - Multiple Vulnerabilities | 28 Feb 201400:00 | – | exploitdb |
Node
OROROROROROROROROROROROROROROROROROROROR
| Source | Link |
|---|---|
| baesystemsdetica | www.baesystemsdetica.com.au/Research/Advisories/Webuzo-Multiple-Vulnerabilities-%28DS-2013-007%29 |
| osvdb | www.osvdb.org/99203 |
| securityfocus | www.securityfocus.com/bid/63464 |
| softaculous | www.softaculous.com/board/index.php |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| user | request body | /filemanager/login.php | Cross-site scripting (XSS) vulnerability allowing injection of arbitrary web script or HTML via the user parameter. | CWE-79 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo19 Nov 2013 04:50Current
5.8Medium risk
Vulners AI Score5.8
CVSS24.3
EPSS0.00742