Lucene search
HistoryMay 24, 2010 - 5:30 p.m.
CVE-2010-2017
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.002
Percentile
57.9%
Cross-site scripting (XSS) vulnerability in hasil-pencarian.html in Lokomedia CMS 1.4.1 and 2.0 allows remote attackers to inject arbitrary web script or HTML via the kata parameter. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
bukulokomedialokomedia_cmsMatch1.4.1
ORbukulokomedialokomedia_cmsMatch2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bukulokomedia | lokomedia_cms | 1.4.1 | cpe:2.3:a:bukulokomedia:lokomedia_cms:1.4.1:*:*:*:*:*:*:* |
| bukulokomedia | lokomedia_cms | 2.0 | cpe:2.3:a:bukulokomedia:lokomedia_cms:2.0:*:*:*:*:*:*:* |
Related
prion
prion
Cross site scripting
2010-05-24 17:30:00
cve
cve
CVE-2010-2017
2010-05-24 17:30:01
cvelist
cvelist
CVE-2010-2017
2010-05-24 17:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.002
Percentile
57.9%
Related for NVD:CVE-2010-2017