Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2010-4985

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2010-4985
Last Modified 13 Feb 2012 11:02:44
Published 01 Nov 2011 06:55:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2010-4985

Summary

Cross-site scripting (XSS) vulnerability in notes.php in My Kazaam Notes Management System allows remote attackers to inject arbitrary web script or HTML via vectors involving the "Enter Reference Number Below" text box.

Vulnerable Systems

Application

  • Mykazaam Notes Management System

  • Mykazaam Notes Management System -


References

XF - notes-notes-xss(60253)

BID - 41542

EXPLOIT-DB - 14325

MISC - http://packetstormsecurity.org/1007-exploits/mykazaamnms-sqlxss.txt

SREASON - 8494


Last Updated: 27 May 2016 10:57:24