Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-6395
HistoryDec 05, 2013 - 6:55 p.m.

CVE-2013-6395

2013-12-0518:55:12
CWE-79
[email protected]
web.nvd.nist.gov
23
cve-2013-6395
cross-site scripting
xss
ganglia web
security vulnerability
nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.3%

JSON

Cross-site scripting (XSS) vulnerability in header.php in Ganglia Web 3.5.8 and 3.5.10 allows remote attackers to inject arbitrary web script or HTML via the host_regex parameter to the default URI, which is processed by get_context.php.

Affected configurations

NVD
Node
gangliaganglia-webMatch3.5.8
OR
gangliaganglia-webMatch3.5.10

Related

prion 1
nessus 4
openvas 8
fedora 3
mageia 1
nvd 1
cvelist 1
amazon 1
ubuntucve 1
debiancve 1
prion
prion
Cross site scripting
2013-12-05 18:55:00
nessus
nessus
Fedora 18 : ganglia-3.6.0-3.fc18 (2013-22497)
2013-12-10 00:00:00
Fedora 19 : ganglia-3.6.0-3.fc19 (2013-22444)
2013-12-10 00:00:00
Fedora 20 : ganglia-3.6.0-3.fc20 (2013-22396)
2013-12-14 00:00:00
openvas
openvas
Ganglia Web < 3.5.11 XSS Vulnerability
2017-03-21 00:00:00
Fedora Update for ganglia FEDORA-2013-22444
2013-12-17 00:00:00
Amazon Linux: Security Advisory (ALAS-2013-268)
2015-09-08 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: ganglia-3.6.0-3.fc18
2013-12-10 06:18:42
[SECURITY] Fedora 20 Update: ganglia-3.6.0-3.fc20
2013-12-14 03:41:04
[SECURITY] Fedora 19 Update: ganglia-3.6.0-3.fc19
2013-12-10 06:10:53
mageia
mageia
Updated ganglia-web package fixes security vulnerability
2013-12-01 01:40:35
nvd
nvd
CVE-2013-6395
2013-12-05 18:55:12
cvelist
cvelist
CVE-2013-6395
2013-12-05 18:00:00
amazon
amazon
Medium: ganglia
2013-12-17 21:39:00
ubuntucve
ubuntucve
CVE-2013-6395
2013-12-05 00:00:00
debiancve
debiancve
CVE-2013-6395
2013-12-05 18:55:12

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.3%

JSON
Related for CVE-2013-6395
prion1nessus4openvas8fedora3mageia1nvd1cvelist1amazon1ubuntucve1debiancve1