Lucene search

PRIOn knowledge basePRION:CVE-2011-5081

HistoryFeb 18, 2012 - 12:55 a.m.

Cross site scripting

2012-02-1800:55:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

70.3%

JSON

Cross-site scripting (XSS) vulnerability in RestoreFile.pm in BackupPC 3.1.0, 3.2.1, and possibly other earlier versions allows remote attackers to inject arbitrary web script or HTML via the share parameter in a RestoreFile action to index.cgi.

CPENameOperatorVersion
backuppceq3.1.0
backuppceq3.2.1

CPE	Name	Operator	Version
	backuppc	eq	3.1.0
	backuppc	eq	3.2.1

References

seclists.org/bugtraq/2011/Apr/266

secunia.com/advisories/44385

www.osvdb.org/72055

exchange.xforce.ibmcloud.com/vulnerabilities/67170

www.htbridge.ch/advisory/multiple_xss_vulnerabilities_in_backuppc.html

6.1 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

70.3%

JSON

Related for PRION:CVE-2011-5081