Lucene search
Japan Vulnerability NotesJVN:92651529HistoryOct 06, 2008 - 12:00 a.m.
JVN#92651529 Nucleus EUC-JP Japanese Edition vulnerable to cross-site scripting
2008-10-0600:00:00
Japan Vulnerability Notes
jvn.jp
17
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.002
Percentile
58.3%
Nucleus is an open source content management system provided by The Nucleus Group. Nucleus EUC-JP Japanese Edition contains a cross-site scripting vulnerability.
Impact
An arbitrary script may be executed on the specific web browser.
Solution
Update the Software
Apply the latest update provided by the developer.
Products Affected
- Nucleus v3.31 SP1 EUC-JP Japanese Edition and earlier
According to the developer, it is confirmed that this vulnerability exist in Nucleus EUC-JP only, and Nucleus UTF-8 Japanese Edition and Nucleus English Edition are not affected.
For more information, refer to the developer’s website.
Related
cvelist
cvelist
CVE-2008-4446
2008-10-06 18:00:00
prion
prion
Cross site scripting
2008-10-06 19:54:00
nvd
nvd
CVE-2008-4446
2008-10-06 19:54:36
cve
cve
CVE-2008-4446
2008-10-06 19:54:36
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.002
Percentile
58.3%
Related for JVN:92651529