CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2023/04/26 12:15 a.m.•8 views

CVE-2012-5873

ARC aka ARC2 through 2011-12-01 allows reflected XSS via the endpoint.php query parameter in an output=htmltab action...

6.1CVSS5.4AI score0.00222EPSS

Exploits1References1

Positive Technologies•added 2023/04/25 12:0 a.m.•2 views

PT-2023-9991 · Arc · Arc

Name of the Vulnerable Software and Affected Versions: ARC aka ARC2 through 2011-12-01 Description: The issue allows reflected XSS via the end point.php query parameter in an output=htmltab action. This can be exploited through the "/end point.php" API endpoint, specifically by manipulating the...

6.1CVSS6.1AI score0.00222EPSS

Exploits1References5

CVE•added 2023/04/25 12:0 a.m.•39 views

CVE-2012-5873

ARC (aka ARC2) up to 2011-12-01 is affected by a reflected XSS through the end_point.php query parameter when action output=htmltab is used. The vulnerability is documented across multiple sources (NVD, Red Hat, CVE lists, and enrichment feeds) with a common description: input reflected in HTML o...

6.1CVSS5.9AI score0.00222EPSS

Exploits1References1Affected Software1