Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0900

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-0900
Last Modified 23 Jan 2012 10:11:03
Published 20 Jan 2012 12:55:02
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0900

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Beehive Forum 1.0.1 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) forum/register.php or (2) forum/logon.php.

Vulnerable Systems

Application

  • Beehive Forum 1.0.1


References

XF - beehiveforum101-multiple-xss(72411)

BID - 51424

MISC - http://www.darksecurity.de/advisories/SSCHADV2011-042.txt

SECUNIA - 47595

BUGTRAQ - 20120115 Beehive Forum 101 Multiple XSS vulnerabilities


Last Updated: 27 May 2016 10:58:06