Cross site scripting

2009-01-0617:30:00

PRIOn knowledge base

www.prio-n.com

5.9 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.7%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in KnowledgeTree before 3.5.4a allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-4281.

CPENameOperatorVersion
knowledgetree_document_managementeq3.0.398
knowledgetree_document_managementeq3.0.397
knowledgetree_document_managementeq3.1.98
knowledgetree_document_managementeq3.5.2
knowledgetree_document_managementeq3.3.2
knowledgetree_document_managementeq3.3.6
knowledgetree_document_managementeq3.0.3
knowledgetree_document_managementeq3.4.3
knowledgetree_document_managementeq3.1
knowledgetree_document_managementeq3.4.5

Name	Operator	Version
knowledgetree_document_management	eq	3.0.398
knowledgetree_document_management	eq	3.0.397
knowledgetree_document_management	eq	3.1.98
knowledgetree_document_management	eq	3.5.2
knowledgetree_document_management	eq	3.3.2
knowledgetree_document_management	eq	3.3.6
knowledgetree_document_management	eq	3.0.3
knowledgetree_document_management	eq	3.4.3
knowledgetree_document_management	eq	3.1
knowledgetree_document_management	eq	3.4.5