Lucene search
PRIOn knowledge basePRION:CVE-2012-1296HistoryAug 26, 2012 - 8:55 p.m.
Cross site scripting
2012-08-2620:55:00
PRIOn knowledge base
www.prio-n.com
2
6.1 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.1%
Multiple cross-site scripting (XSS) vulnerabilities in apps/admin/handlers/preview.php in Elefant CMS 1.0.x before 1.0.2-Beta and 1.1.x before 1.1.5-Beta allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2) body parameter to admin/preview.
| CPE | Name | Operator | Version |
|---|---|---|---|
| elefantcms | eq | 1.1.1-beta | |
| elefantcms | eq | <= 1.1.4-beta | |
| elefantcms | eq | 1.1.3-beta | |
| elefantcms | eq | 1.1.2-beta | |
| elefantcms | le | 1.0.1 |
Related
cve
cve
CVE-2012-1296
2012-08-26 20:55:00
osv
osv
Elefant CMS Multiple XSS Vulnerabilities
2022-05-17 01:48:19
cvelist
cvelist
CVE-2012-1296
2012-08-26 20:00:00
github
github
Elefant CMS Multiple XSS Vulnerabilities
2022-05-17 01:48:19
htbridge
htbridge
Multiple vulnerabilities in Elefant CMS
2012-02-22 00:00:00
securityvulns
securityvulns
Multiple vulnerabilities in Elefant CMS
2012-03-19 00:00:00
6.1 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.1%
Related for PRION:CVE-2012-1296