CVE-2012-1247

2012-05-1520:00:00

jpcert

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.003

Percentile

65.5%

JSON

Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and earlier, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML by leveraging support for Cascading Style Sheets (CSS) expressions.

References

jvn.jp/en/jp/JVN63941302/index.html

jvndb.jvn.jp/jvndb/JVNDB-2012-000042

www.kent-web.com/cart/mart.html

www.securityfocus.com/bid/53541

exchange.xforce.ibmcloud.com/vulnerabilities/75674