Lucene search

[email protected]CVE-2013-6047

HistoryFeb 25, 2014 - 3:55 p.m.

CVE-2013-6047

2014-02-2515:55:07

CWE-79

[email protected]

web.nvd.nist.gov

cve-2013-6047

cross-site scripting

xss

vulnerabilities

ikiwiki-hosting

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.4%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the site creation interface in ikiwiki-hosting before 0.20131025 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected configurations

NVD

Node

ikiwiki_hosting_projectikiwiki_hostingRange≤0.20130926

ikiwiki_hosting_projectikiwiki_hostingMatch0.20110401

ikiwiki_hosting_projectikiwiki_hostingMatch0.20110420

ikiwiki_hosting_projectikiwiki_hostingMatch0.20110424

ikiwiki_hosting_projectikiwiki_hostingMatch0.20110515

ikiwiki_hosting_projectikiwiki_hostingMatch0.20110608

ikiwiki_hosting_projectikiwiki_hostingMatch0.20110926

ikiwiki_hosting_projectikiwiki_hostingMatch0.20111005

ikiwiki_hosting_projectikiwiki_hostingMatch0.20120125

ikiwiki_hosting_projectikiwiki_hostingMatch0.20120131

ikiwiki_hosting_projectikiwiki_hostingMatch0.20120425

ikiwiki_hosting_projectikiwiki_hostingMatch0.20120526

ikiwiki_hosting_projectikiwiki_hostingMatch0.20120527

ikiwiki_hosting_projectikiwiki_hostingMatch0.20130504

CPENameOperatorVersion
ikiwiki_hosting_project:ikiwiki_hostingikiwiki hosting project ikiwiki hostingle0.20130926
ikiwiki_hosting_project:ikiwiki_hostingikiwiki hosting project ikiwiki hostingeq0.20110401
ikiwiki_hosting_project:ikiwiki_hostingikiwiki hosting project ikiwiki hostingeq0.20110420
ikiwiki_hosting_project:ikiwiki_hostingikiwiki hosting project ikiwiki hostingeq0.20110424
ikiwiki_hosting_project:ikiwiki_hostingikiwiki hosting project ikiwiki hostingeq0.20110515
ikiwiki_hosting_project:ikiwiki_hostingikiwiki hosting project ikiwiki hostingeq0.20110608
ikiwiki_hosting_project:ikiwiki_hostingikiwiki hosting project ikiwiki hostingeq0.20110926
ikiwiki_hosting_project:ikiwiki_hostingikiwiki hosting project ikiwiki hostingeq0.20111005
ikiwiki_hosting_project:ikiwiki_hostingikiwiki hosting project ikiwiki hostingeq0.20120125
ikiwiki_hosting_project:ikiwiki_hostingikiwiki hosting project ikiwiki hostingeq0.20120131

CPE	Name	Operator	Version
ikiwiki_hosting_project:ikiwiki_hosting	ikiwiki hosting project ikiwiki hosting	le	0.20130926
ikiwiki_hosting_project:ikiwiki_hosting	ikiwiki hosting project ikiwiki hosting	eq	0.20110401
ikiwiki_hosting_project:ikiwiki_hosting	ikiwiki hosting project ikiwiki hosting	eq	0.20110420
ikiwiki_hosting_project:ikiwiki_hosting	ikiwiki hosting project ikiwiki hosting	eq	0.20110424
ikiwiki_hosting_project:ikiwiki_hosting	ikiwiki hosting project ikiwiki hosting	eq	0.20110515
ikiwiki_hosting_project:ikiwiki_hosting	ikiwiki hosting project ikiwiki hosting	eq	0.20110608
ikiwiki_hosting_project:ikiwiki_hosting	ikiwiki hosting project ikiwiki hosting	eq	0.20110926
ikiwiki_hosting_project:ikiwiki_hosting	ikiwiki hosting project ikiwiki hosting	eq	0.20111005
ikiwiki_hosting_project:ikiwiki_hosting	ikiwiki hosting project ikiwiki hosting	eq	0.20120125
ikiwiki_hosting_project:ikiwiki_hosting	ikiwiki hosting project ikiwiki hosting	eq	0.20120131