Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-7231
cve-2013-7231
cross-site scripting
xss
esri arcgis
security vulnerability
nvd
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
30.3%
Cross-site scripting (XSS) vulnerability in the Mobile Content Server in ESRI ArcGIS for Server 10.1 and 10.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2013-5222.
Affected configurations
Node
esriarcgisMatch10.1
OResriarcgisMatch10.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| esri:arcgis | esri arcgis | eq | 10.1 |
| esri:arcgis | esri arcgis | eq | 10.2 |
Related
prion
prion
Cross site scripting
2013-12-30 04:53:00
Cross site scripting
2013-12-30 04:53:00
nvd
nvd
CVE-2013-7231
2013-12-30 04:53:07
CVE-2013-5222
2013-12-30 04:53:07
cvelist
cvelist
CVE-2013-7231
2022-10-03 16:14:52
CVE-2013-5222
2013-12-30 02:00:00
seebug
seebug
ESRI ArcGIS未明跨站脚本漏洞
2014-01-02 00:00:00
cve
cve
CVE-2013-5222
2013-12-30 04:53:07
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
30.3%
Related for CVE-2013-7231