CVE-2012-0932

2012-01-2902:00:00

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.4%

JSON

Cross-site scripting (XSS) vulnerability in admin/login.php in Lead Capture Page System allows remote attackers to inject arbitrary web script or HTML via the message parameter.

References

osvdb.org/78455

packetstormsecurity.org/files/108887/leadcapturepagesystem-xss.txt

secunia.com/advisories/47702

exchange.xforce.ibmcloud.com/vulnerabilities/72623