CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

NVD•added 2012/09/25 11:55 p.m.•15 views

CVE-2012-0869

Cross-site scripting XSS vulnerability in fup in Frams' Fast File EXchange FEX, aka fex before 20120215 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS5.5AI score0.11917EPSS

Exploits0References11

OSV•added 2012/09/25 11:55 p.m.•8 views

CVE-2012-0869

Cross-site scripting XSS vulnerability in fup in Frams' Fast File EXchange FEX, aka fex before 20120215 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

5.5AI score

Exploits0References11

UbuntuCve•added 2012/09/25 11:55 p.m.•26 views

CVE-2012-0869

Cross-site scripting XSS vulnerability in fup in Frams' Fast File EXchange FEX, aka fex before 20120215 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS5.9AI score0.11917EPSS

Exploits0References1

CVE•added 2012/09/25 11:0 p.m.•73 views

CVE-2012-0869

CVE-2012-0869 concerns FEX (Frams’ Fast File Exchange) via the vulnerable fup script. The issue is a Cross-Site Scripting (XSS) vulnerability exploitable through the id parameter, due to insufficient input sanitization. Affected product: F EX’s web service (fex) and its fup component, prior to 20...

4.3CVSS5.5AI score0.11917EPSS

Exploits0References11Affected Software1

OpenVAS•added 2012/03/12 12:0 a.m.•20 views

Debian Security Advisory DSA 2414-2 (fex)

The remote host is missing an update to fex announced via advisory DSA 2414-2. OpenVAS Vulnerability Test $Id: deb24142.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2414-2 fex Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

4.3CVSS0.2AI score0.11917EPSS

Exploits0

OpenVAS•added 2012/03/12 12:0 a.m.•24 views

Debian Security Advisory DSA 2414-1 (fex)

The remote host is missing an update to fex announced via advisory DSA 2414-1. OpenVAS Vulnerability Test $Id: deb24141.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2414-1 fex Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

4.3CVSS0.11917EPSS

Exploits0

Debian•added 2012/02/25 4:10 p.m.•19 views

[SECURITY] [DSA 2414-2] fex regression

------------------------------------------------------------------------- Debian Security Advisory DSA-2414-2 [email protected] http://www.debian.org/security/ Nico Golde February 25, 2012 http://www.debian.org/security/faq -...

4.3CVSS5.8AI score0.11917EPSS

Exploits0

Tenable Nessus•added 2012/02/22 12:0 a.m.•14 views

Debian DSA-2414-2 : fex - insufficient input sanitization

Nicola Fioravanti discovered that FX, a web service for transferring very large files, is not properly sanitizing input parameters of the 'fup'script. An attacker can use this flaw to conduct reflected cross-site scripting attacks via various script parameters. %NASLMINLEVEL 70300 C Tenable Netwo...

4.3CVSS5.3AI score0.11917EPSS

Exploits0References3

Debian•added 2012/02/21 10:54 p.m.•28 views

[SECURITY] [DSA 2414-1] fex security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2413-1 [email protected] http://www.debian.org/security/ Nico Golde February 21, 2012 http://www.debian.org/security/faq -...

4.3CVSS5.7AI score0.11917EPSS

Exploits0