0.05 Low
EPSS
Percentile
92.9%
Cross-site scripting (XSS) vulnerability in NuSOAP 0.9.5, as used in MantisBT and other products, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to an arbitrary PHP script that uses NuSOAP classes.
launchpad.net/bugs/cve/CVE-2010-3070
nvd.nist.gov/vuln/detail/CVE-2010-3070
security-tracker.debian.org/tracker/CVE-2010-3070
www.cve.org/CVERecord?id=CVE-2010-3070