Lucene search
HistorySep 22, 2014 - 1:55 a.m.
CVE-2014-5322
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.6
Confidence
High
EPSS
0.002
Percentile
60.3%
Cross-site scripting (XSS) vulnerability in the Instant Web Publish function in FileMaker Pro before 13 and Pro Advanced before 13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-3640.
Affected configurations
Node
filemakerfilemaker_proRange≤12.0.0.0
ORfilemakerfilemaker_pro_advancedRange≤12.0.0.0
Related
cvelist
cvelist
CVE-2014-5322
2014-09-22 01:00:00
CVE-2013-3640
2022-10-03 16:14:45
prion
prion
Cross site scripting
2014-09-22 01:55:00
Cross site scripting
2013-06-10 17:55:00
jvn
jvn
JVN#53579095: FileMaker Pro vulnerable to cross-site scripting
2013-05-31 00:00:00
cve
cve
CVE-2014-5322
2014-09-22 01:55:06
CVE-2013-3640
2022-10-03 16:14:45
nvd
nvd
CVE-2013-3640
2013-06-10 17:55:01
kaspersky
kaspersky
KLA10156 Multiple vulnerabilities in FileMaker
2013-06-10 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.6
Confidence
High
EPSS
0.002
Percentile
60.3%
Related for NVD:CVE-2014-5322