Lucene search
MitreCVELIST:CVE-2010-3266HistoryDec 02, 2010 - 4:00 p.m.
CVE-2010-3266
2010-12-0216:00:00
mitre
www.cve.org
7
Multiple cross-site scripting (XSS) vulnerabilities in BugTracker.NET before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via (1) the pcd parameter to edit_bug.aspx, (2) the bug_id parameter to edit_comment.aspx, (3) the id parameter to edit_user_permissions2.aspx, or (4) the default_name parameter to edit_customfield.aspx. NOTE: some of these details are obtained from third party information.
References
Related
exploitdb
exploitdb
BugTracker.NET 3.4.4 - SQL Injection / Cross-Site Scripting
2010-11-30 00:00:00
BugTracker.NET 3.4.4 - Multiple Vulnerabilities
2010-12-01 00:00:00
prion
prion
Cross site scripting
2010-12-02 16:22:00
cve
cve
CVE-2010-3266
2010-12-02 16:22:21
nvd
nvd
CVE-2010-3266
2010-12-02 16:22:21
packetstorm
packetstorm
Core Security Technologies Advisory 2010.1109
2010-12-01 00:00:00
openvas
openvas
BugTracker.NET Cross-Site Scripting and SQL Injection Vulnerabilities
2011-04-01 00:00:00
BugTracker.NET Cross-Site Scripting and SQL Injection Vulnerabilities
2011-04-01 00:00:00
zdt
zdt
BugTracker.Net 3.4.4 Multiple Vulnerabilities
2010-12-02 00:00:00
securityvulns
securityvulns
CORE-2010-1109 - Multiple vulnerabilities in BugTracker.Net
2010-12-01 00:00:00
exploitpack
exploitpack
BugTracker.NET 3.4.4 - Multiple Vulnerabilities
2010-12-01 00:00:00