Lucene search
HistoryJan 10, 2014 - 4:47 p.m.
CVE-2013-7289
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
57.7%
Multiple cross-site scripting (XSS) vulnerabilities in register.php in Andy’s PHP Knowledgebase (Aphpkb) before 0.95.8 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, (3) email, or (4) username parameter.
Affected configurations
Node
aphpkbaphpkbRange≤0.95.7
ORaphpkbaphpkbMatch0.1
ORaphpkbaphpkbMatch0.2
ORaphpkbaphpkbMatch0.3
ORaphpkbaphpkbMatch0.4
ORaphpkbaphpkbMatch0.5
ORaphpkbaphpkbMatch0.6
ORaphpkbaphpkbMatch0.9
ORaphpkbaphpkbMatch0.21
ORaphpkbaphpkbMatch0.31
ORaphpkbaphpkbMatch0.33
ORaphpkbaphpkbMatch0.35
ORaphpkbaphpkbMatch0.38
ORaphpkbaphpkbMatch0.39
ORaphpkbaphpkbMatch0.41
ORaphpkbaphpkbMatch0.42
ORaphpkbaphpkbMatch0.43
ORaphpkbaphpkbMatch0.44
ORaphpkbaphpkbMatch0.45
ORaphpkbaphpkbMatch0.51
ORaphpkbaphpkbMatch0.52
ORaphpkbaphpkbMatch0.53
ORaphpkbaphpkbMatch0.54
ORaphpkbaphpkbMatch0.55
ORaphpkbaphpkbMatch0.56
ORaphpkbaphpkbMatch0.57
ORaphpkbaphpkbMatch0.58
ORaphpkbaphpkbMatch0.59
ORaphpkbaphpkbMatch0.61
ORaphpkbaphpkbMatch0.62
ORaphpkbaphpkbMatch0.63
ORaphpkbaphpkbMatch0.64
ORaphpkbaphpkbMatch0.65
ORaphpkbaphpkbMatch0.66
ORaphpkbaphpkbMatch0.67
ORaphpkbaphpkbMatch0.70
ORaphpkbaphpkbMatch0.71
ORaphpkbaphpkbMatch0.72
ORaphpkbaphpkbMatch0.73
ORaphpkbaphpkbMatch0.74
ORaphpkbaphpkbMatch0.75
ORaphpkbaphpkbMatch0.76
ORaphpkbaphpkbMatch0.77
ORaphpkbaphpkbMatch0.78
ORaphpkbaphpkbMatch0.79
ORaphpkbaphpkbMatch0.80
ORaphpkbaphpkbMatch0.81
ORaphpkbaphpkbMatch0.82
ORaphpkbaphpkbMatch0.83
ORaphpkbaphpkbMatch0.84
ORaphpkbaphpkbMatch0.85
ORaphpkbaphpkbMatch0.86
ORaphpkbaphpkbMatch0.87
ORaphpkbaphpkbMatch0.88
ORaphpkbaphpkbMatch0.88.5
ORaphpkbaphpkbMatch0.88.6
ORaphpkbaphpkbMatch0.88.7
ORaphpkbaphpkbMatch0.88.8
ORaphpkbaphpkbMatch0.89
ORaphpkbaphpkbMatch0.91
ORaphpkbaphpkbMatch0.92
ORaphpkbaphpkbMatch0.92.1
ORaphpkbaphpkbMatch0.92.2
ORaphpkbaphpkbMatch0.92.3
ORaphpkbaphpkbMatch0.92.4
ORaphpkbaphpkbMatch0.92.5
ORaphpkbaphpkbMatch0.92.6
ORaphpkbaphpkbMatch0.92.7
ORaphpkbaphpkbMatch0.92.8
ORaphpkbaphpkbMatch0.92.9
ORaphpkbaphpkbMatch0.93.1
ORaphpkbaphpkbMatch0.93.2
ORaphpkbaphpkbMatch0.93.3
ORaphpkbaphpkbMatch0.93.4
ORaphpkbaphpkbMatch0.93.5
ORaphpkbaphpkbMatch0.93.6
ORaphpkbaphpkbMatch0.93.7
ORaphpkbaphpkbMatch0.93.8
ORaphpkbaphpkbMatch0.93.9
ORaphpkbaphpkbMatch0.94.1
ORaphpkbaphpkbMatch0.94.2
ORaphpkbaphpkbMatch0.94.3
ORaphpkbaphpkbMatch0.94.4
ORaphpkbaphpkbMatch0.94.5
ORaphpkbaphpkbMatch0.94.6
ORaphpkbaphpkbMatch0.94.7
ORaphpkbaphpkbMatch0.94.8
ORaphpkbaphpkbMatch0.94.9
ORaphpkbaphpkbMatch0.95
ORaphpkbaphpkbMatch0.95.1
ORaphpkbaphpkbMatch0.95.2
ORaphpkbaphpkbMatch0.95.3
ORaphpkbaphpkbMatch0.95.4
ORaphpkbaphpkbMatch0.95.5
ORaphpkbaphpkbMatch0.95.6
ORaphpkbaphpkbMatch0.361
ORaphpkbaphpkbMatch0.371
Related
prion
prion
Cross site scripting
2014-01-10 16:47:00
cve
cve
CVE-2013-7289
2022-10-03 16:14:53
cvelist
cvelist
CVE-2013-7289
2022-10-03 16:14:53
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
57.7%
Related for NVD:CVE-2013-7289