Lucene search

[email protected]NVD:CVE-2012-3832

HistoryJul 03, 2012 - 10:55 p.m.

CVE-2012-3832

2012-07-0322:55:02

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

50.9%

JSON

Cross-site scripting (XSS) vulnerability in decoda/Decoda.php in Decoda before 3.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to (1) b or (2) div tags.

Affected configurations

Nvd

Node

milesjdecodaRange≤3.1

milesjdecodaMatch2.2

milesjdecodaMatch2.3

milesjdecodaMatch2.4

milesjdecodaMatch2.5

milesjdecodaMatch2.6

milesjdecodaMatch2.7

milesjdecodaMatch2.8

milesjdecodaMatch2.9

milesjdecodaMatch3.0

VendorProductVersionCPE
milesjdecoda*cpe:2.3:a:milesj:decoda:*:*:*:*:*:*:*:*
milesjdecoda2.2cpe:2.3:a:milesj:decoda:2.2:*:*:*:*:*:*:*
milesjdecoda2.3cpe:2.3:a:milesj:decoda:2.3:*:*:*:*:*:*:*
milesjdecoda2.4cpe:2.3:a:milesj:decoda:2.4:*:*:*:*:*:*:*
milesjdecoda2.5cpe:2.3:a:milesj:decoda:2.5:*:*:*:*:*:*:*
milesjdecoda2.6cpe:2.3:a:milesj:decoda:2.6:*:*:*:*:*:*:*
milesjdecoda2.7cpe:2.3:a:milesj:decoda:2.7:*:*:*:*:*:*:*
milesjdecoda2.8cpe:2.3:a:milesj:decoda:2.8:*:*:*:*:*:*:*
milesjdecoda2.9cpe:2.3:a:milesj:decoda:2.9:*:*:*:*:*:*:*
milesjdecoda3.0cpe:2.3:a:milesj:decoda:3.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
milesj	decoda	*	cpe:2.3:a:milesj:decoda::::::::
milesj	decoda	2.2	cpe:2.3:a:milesj:decoda:2.2:::::::*
milesj	decoda	2.3	cpe:2.3:a:milesj:decoda:2.3:::::::*
milesj	decoda	2.4	cpe:2.3:a:milesj:decoda:2.4:::::::*
milesj	decoda	2.5	cpe:2.3:a:milesj:decoda:2.5:::::::*
milesj	decoda	2.6	cpe:2.3:a:milesj:decoda:2.6:::::::*
milesj	decoda	2.7	cpe:2.3:a:milesj:decoda:2.7:::::::*
milesj	decoda	2.8	cpe:2.3:a:milesj:decoda:2.8:::::::*
milesj	decoda	2.9	cpe:2.3:a:milesj:decoda:2.9:::::::*
milesj	decoda	3.0	cpe:2.3:a:milesj:decoda:3.0:::::::*

References

github.com/milesj/php-decoda/commit/6f2b9fb48bc110edeab17459038feb2627d52320

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

50.9%

JSON

Related for NVD:CVE-2012-3832

prion1 cvelist1 cve1