Lucene search

[email protected]CVE-2014-3905

HistoryAug 17, 2014 - 6:55 p.m.

CVE-2014-3905

2014-08-1718:55:01

CWE-79

[email protected]

web.nvd.nist.gov

cve-2014-3905

cross-site scripting

xss

web script

html

tenfourzero shutter 0.1.4

nvd

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

JSON

Cross-site scripting (XSS) vulnerability in tenfourzero Shutter 0.1.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CPE configuration

NVD

tenfourzeroshutterMatch0.1.4

CPENameOperatorVersion
tenfourzero:shuttertenfourzero shuttereq0.1.4

CPE	Name	Operator	Version
tenfourzero:shutter	tenfourzero shutter	eq	0.1.4

References

jvn.jp/en/jp/JVN04455183/index.html

jvndb.jvn.jp/jvndb/JVNDB-2014-000096

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

JSON

Related for CVE-2014-3905

jvn1 nvd1 prion1 cvelist1