Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2017 Greenbone AGOPENVAS:1361412562310112083
HistoryOct 16, 2017 - 12:00 a.m.

EPESI Multiple Stored XSS Vulnerabilities

2017-10-1600:00:00
Copyright (C) 2017 Greenbone AG
plugins.openvas.org
11

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

24.6%

JSON

EPESI is prone to multiple stored cross-site scripting (XSS) vulnerabilities
in various parameters.

# SPDX-FileCopyrightText: 2017 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:telaxus:epesi";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.112083");
  script_version("2024-03-04T14:37:58+0000");
  script_cve_id("CVE-2017-14712", "CVE-2017-14713", "CVE-2017-14714", "CVE-2017-14715", "CVE-2017-14716", "CVE-2017-14717");
  script_tag(name:"cvss_base", value:"3.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:S/C:N/I:P/A:N");
  script_tag(name:"last_modification", value:"2024-03-04 14:37:58 +0000 (Mon, 04 Mar 2024)");
  script_tag(name:"severity_vector", value:"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2017-10-06 01:29:00 +0000 (Fri, 06 Oct 2017)");
  script_tag(name:"creation_date", value:"2017-10-16 13:53:00 +0200 (Mon, 16 Oct 2017)");
  script_name("EPESI Multiple Stored XSS Vulnerabilities");
  script_category(ACT_GATHER_INFO);
  script_family("Web application abuses");
  script_copyright("Copyright (C) 2017 Greenbone AG");
  script_dependencies("gb_epesi_detect.nasl");
  script_mandatory_keys("epesi/installed", "epesi/revision");

  script_xref(name:"URL", value:"https://forum.epesibim.com/d/4956-security-issue-multiple-stored-xss-in-epesi-version-1-8-2-rev20170830");
  script_xref(name:"URL", value:"https://www.exploit-db.com/exploits/42950/");

  script_tag(name:"summary", value:"EPESI is prone to multiple stored cross-site scripting (XSS) vulnerabilities
in various parameters.");

  script_tag(name:"impact", value:"Successfully exploiting this issue will allow an auhenticated remote attacker
to store persistently executable scripts inside the application.");

  script_tag(name:"affected", value:"EPESI version 1.8.2-rev20170830 and below");

  script_tag(name:"solution", value:"Update to version 1.8.2-20171019 or later.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"remote_banner_unreliable");

  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if(!port = get_app_port(cpe:CPE))
  exit(0);

if(!vers = get_app_version(cpe:CPE, port:port))
  exit(0);

rev = get_kb_item("epesi/revision");
if (!rev)
  exit(0);

if(version_is_less(version:vers, test_version:"1.8.2")) {
  report = report_fixed_ver(installed_version:vers, fixed_version:"1.8.2-20171019");
  security_message(port:port, data:report);
  exit(0);
}

if (version_is_equal(version: vers, test_version: "1.8.2")) {
  if (version_is_less(version: rev, test_version: "20171019")) {
    report = report_fixed_ver(installed_version: vers, installed_patch: rev, fixed_version: "1.8.2",
                              fixed_patch: "20171019");
    security_message(port: port, data: report);
    exit(0);
  }
}

exit(99);

Related

packetstorm 1
exploitpack 1
zdt 1
exploitdb 1
cve 6
prion 6
nvd 6
cvelist 6
packetstorm
packetstorm
EPESI 1.8.2 Revision 20170830 Cross Site Scripting
2017-10-04 00:00:00
exploitpack
exploitpack
EPESI 1.8.2 rev20170830 - Cross-Site Scripting
2017-10-03 00:00:00
zdt
zdt
EPESI 1.8.2 rev20170830 - Cross-Site Scripting Vulnerability
2017-10-04 00:00:00
exploitdb
exploitdb
EPESI 1.8.2 rev20170830 - Cross-Site Scripting
2017-10-03 00:00:00
cve
cve
CVE-2017-14717
2017-09-22 19:29:00
CVE-2017-14713
2017-09-22 19:29:00
CVE-2017-14712
2017-09-22 19:29:00
prion
prion
Cross site scripting
2017-09-22 19:29:00
Cross site scripting
2017-09-22 19:29:00
Cross site scripting
2017-09-22 19:29:00
nvd
nvd
CVE-2017-14717
2017-09-22 19:29:00
CVE-2017-14712
2017-09-22 19:29:00
CVE-2017-14716
2017-09-22 19:29:00
cvelist
cvelist
CVE-2017-14717
2017-09-22 19:00:00
CVE-2017-14716
2017-09-22 19:00:00
CVE-2017-14713
2017-09-22 19:00:00

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

24.6%

JSON
Related for OPENVAS:1361412562310112083
packetstorm1exploitpack1zdt1exploitdb1cve6prion6nvd6cvelist6