CVE-2015-10049

🗓️ 15 Jan 2023 17:58:06Reported by VulDBType

Vulnerability in Overdrive Eletrônica course-builder up to 1.7.x allows remote cross site scripting via oeditor.html

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2015-10049	15 Jan 202320:13	–	circl
CNNVD	Overdrive Eletrônica course-builder 跨站脚本漏洞	15 Jan 202300:00	–	cnnvd
Cvelist	CVE-2015-10049 Overdrive Eletrônica course-builder oeditor.html cross site scripting	15 Jan 202317:58	–	cvelist
EUVD	EUVD-2015-1063	7 Oct 202500:30	–	euvd
NVD	CVE-2015-10049	15 Jan 202318:15	–	nvd
Prion	Cross site scripting	15 Jan 202318:15	–	prion
Positive Technologies	PT-2023-10228 · Overdrive Eletrônica · Course-Builder	15 Jan 202300:00	–	ptsecurity
RedhatCVE	CVE-2015-10049	22 May 202500:44	–	redhatcve

NVD

Vulners

Node

course-builder_project course-builderRange<1.8.0

[
  {
    "vendor": "Overdrive Eletrônica",
    "product": "course-builder",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      },
      {
        "version": "1.1",
        "status": "affected"
      },
      {
        "version": "1.2",
        "status": "affected"
      },
      {
        "version": "1.3",
        "status": "affected"
      },
      {
        "version": "1.4",
        "status": "affected"
      },
      {
        "version": "1.5",
        "status": "affected"
      },
      {
        "version": "1.6",
        "status": "affected"
      },
      {
        "version": "1.7",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/overdrive-diy/course-builder/releases/tag/V1.8.0
github	www.github.com/overdrive-diy/course-builder/commit/e39645fd714adb7e549908780235911ae282b21b
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

21 Nov 2024 02:24Current

4.8Medium risk

Vulners AI Score4.8

CVSS 3.13.5 - 6.1

CVSS 24

CVSS 33.5

EPSS0.00251

CWE-79