Lucene search
MitreCVELIST:CVE-2012-3872HistoryDec 28, 2012 - 11:00 a.m.
CVE-2012-3872
2012-12-2811:00:00
mitre
www.cve.org
2
cross-site scripting
open constructor
remote attackers
web script injection
html injection
data file edit
confirm
users.
Multiple cross-site scripting (XSS) vulnerabilities in Open Constructor 3.12.0 allow remote attackers to inject arbitrary web script or HTML via (1) the result parameter to data/file/edit.php, (2) the q parameter to confirm.php, or (3) the keyword parameter to users/users.php.
Related
prion
prion
Cross site scripting
2012-12-28 11:48:00
cve
cve
CVE-2012-3872
2012-12-28 11:48:44
exploitdb
exploitdb
Open Constructor - 'confirm.php?q' Cross-Site Scripting
2012-08-04 00:00:00
Open Constructor - '/users/users.php?keyword' Cross-Site Scripting
2012-08-04 00:00:00
packetstorm
packetstorm
Openconstructor CMS 3.12.0 Reflected XSS
2012-08-04 00:00:00
nvd
nvd
CVE-2012-3872
2012-12-28 11:48:44