Lucene search
HistoryDec 26, 2022 - 10:15 p.m.
CVE-2022-36664
cve-2022-36664
password manager
iis 2.0
cross-site scripting
resulturl parameter
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
47.3%
Password Manager for IIS 2.0 has a cross-site scripting (XSS) vulnerability via the /isapi/PasswordManager.dll ResultURL parameter.
Affected configurations
Node
adisconpassword_manager_for_iisMatch2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| adiscon | password_manager_for_iis | 2.0 | cpe:2.3:a:adiscon:password_manager_for_iis:2.0:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
Password Manager for IIS v2.0 - XSS
2023-03-25 00:00:00
cve
cve
CVE-2022-36664
2022-12-26 22:15:10
zdt
zdt
Password Manager For IIS 2.0 Cross Site Scripting Vulneraility
2022-10-04 00:00:00
Password Manager for IIS v2.0 - XSS Vulnerability
2023-03-27 00:00:00
prion
prion
Cross site scripting
2022-12-26 22:15:00
cvelist
cvelist
CVE-2022-36664
2022-12-26 00:00:00
packetstorm
packetstorm
Password Manager For IIS 2.0 Cross Site Scripting
2022-10-03 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
47.3%
Related for NVD:CVE-2022-36664