Cross site scripting

2017-06-0916:29:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.3%

JSON

Cross-site scripting vulnerability in DERAEMON-CMS version 0.8.9 and earlier allows remote attackers to inject arbitrary web script or HTML via the parameters hostname, database and username.

CPENameOperatorVersion
deraemon-cmsle0.8.9

CPE	Name	Operator	Version
	deraemon-cms	le	0.8.9

References

emon-cms.com/new11

www.securityfocus.com/bid/94320

jvn.jp/en/jp/JVN75396659/index.html