CVE-2012-3842

2012-07-0322:00:00

mitre

www.cve.org

cross-site scripting

cmd_domain

jbmc software directadmin

AI Score

5.5

Confidence

High

EPSS

0.002

Percentile

56.1%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the (1) select0 or (2) select8 parameters.

References

archives.neohapsis.com/archives/bugtraq/2012-04/0214.html

www.securityfocus.com/bid/53281

www.vulnerability-lab.com/get_content.php?id=509