Lucene search
HistoryAug 20, 2015 - 8:59 p.m.
CVE-2015-6530
cve
2015
6530
cross-site scripting
xss
opentext
secure mft
nvd
vulnerability
web script
html
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.1%
Cross-site scripting (XSS) vulnerability in OpenText Secure MFT 2013 before 2013 R3 P6 and 2014 before 2014 R2 P2 allows remote attackers to inject arbitrary web script or HTML via the querytext parameter to userdashboard.jsp.
Affected configurations
Node
opentextsecure_mft_2013Range≤r3p5
ORopentextsecure_mft_2014Range≤r2p1
| CPE | Name | Operator | Version |
|---|---|---|---|
| opentext:secure_mft_2013 | opentext secure mft 2013 | le | r3 |
| opentext:secure_mft_2014 | opentext secure mft 2014 | le | r2 |
Related
prion
prion
Cross site scripting
2015-08-20 20:59:00
nvd
nvd
CVE-2015-6530
2015-08-20 20:59:04
cvelist
cvelist
CVE-2015-6530
2015-08-20 20:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.1%
Related for CVE-2015-6530