Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3990

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-3990
Last Modified 12 Jan 2012 12:00:00
Published 22 Dec 2011 03:55:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-3990

Summary

Cross-site scripting (XSS) vulnerability in plugin/comment.inc.php in PukiWiki Plus! 1.4.7plus-u2-i18n and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vulnerable Systems

Application

  • Pukiwiki Plus%21 1.47


References

CONFIRM - http://pukiwiki.cafelounge.net/plus/?%E9%96%8B%E7%99%BA%E6%97%A5%E8%A8%98%2F2011-12-19

JVNDB - JVNDB-2011-000107

JVN - JVN#76515037


Last Updated: 27 May 2016 10:57:16