Lucene search

PRIOn knowledge basePRION:CVE-2007-1276

HistoryMar 05, 2007 - 8:19 p.m.

Cross site scripting

2007-03-0520:19:00

PRIOn knowledge base

www.prio-n.com

6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

77.4%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in chooser.cgi in Webmin before 1.330 and Usermin before 1.260 allow remote attackers to inject arbitrary web script or HTML via a crafted filename.

CPENameOperatorVersion
usermineq1.070
usermineq1.040
usermineq1.250
usermineq1.060
usermineq1.080
usermineq1.100
usermineq1.210
usermineq1.010
usermineq1.130
usermineq1.150

Name	Operator	Version
usermin	eq	1.070
usermin	eq	1.040
usermin	eq	1.250
usermin	eq	1.060
usermin	eq	1.080
usermin	eq	1.100
usermin	eq	1.210
usermin	eq	1.010
usermin	eq	1.130
usermin	eq	1.150

Rows per page:

1-10 of 441

References

osvdb.org/33832

secunia.com/advisories/24321

www.securitytracker.com/id?1017711

www.vupen.com/english/advisories/2007/0780

www.webmin.com/changes-1.330.html

www.webmin.com/security.html

exchange.xforce.ibmcloud.com/vulnerabilities/32725

6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

77.4%

JSON

Related for PRION:CVE-2007-1276