CVE-2011-3383

2022-10-0316:15:07

jpcert

www.cve.org

xss

kent-web

web script

html

remote attackers

5.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

43.7%

JSON

Cross-site scripting (XSS) vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to “the web page to be output.”

References

jvn.jp/en/jp/JVN36684331/index.html

jvndb.jvn.jp/jvndb/JVNDB-2011-000080