Lucene search

[email protected]NVD:CVE-2012-6040

HistoryNov 26, 2012 - 10:55 p.m.

CVE-2012-6040

2012-11-2622:55:01

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

60.4%

JSON

Cross-site scripting (XSS) vulnerability in users.php in File King Advanced File Management 1.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter.

Affected configurations

Nvd

Node

converginefile_king_advanced_file_managementMatch1.4

VendorProductVersionCPE
converginefile_king_advanced_file_management1.4cpe:2.3:a:convergine:file_king_advanced_file_management:1.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
convergine	file_king_advanced_file_management	1.4	cpe:2.3:a:convergine:file_king_advanced_file_management:1.4:::::::*

References

packetstormsecurity.org/files/view/108466/afm134-xss.txt

www.securityfocus.com/bid/51339

exchange.xforce.ibmcloud.com/vulnerabilities/72275

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

60.4%

JSON

Related for NVD:CVE-2012-6040

exploitdb1 cvelist1 prion1 cve1