Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-5185

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-5185
Last Modified 20 Sep 2012 12:00:00
Published 20 Sep 2012 06:55:28
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-5185

Summary

Cross-site scripting (XSS) vulnerability in video_comments.php in Online Subtitles Workshop before 2.0 rev 131 allows remote attackers to inject arbitrary web script or HTML via the comment parameter.

Vulnerable Systems

Application

  • Realmatrix Online Subtitles Workshop 2.0


References

CONFIRM - http://onlinesubtitles.svn.sourceforge.net/viewvc/onlinesubtitles/video_comments.php?r1=31&r2=131&pathrev=146

EXPLOIT-DB - 18035


Last Updated: 27 May 2016 11:00:45