Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2634

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2012-2634
Last Modified 18 Jun 2012 12:00:00
Published 15 Jun 2012 03:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2012-2634

Summary

Cross-site scripting (XSS) vulnerability in FeedDemon before 4.0, when the feed preview option is enabled, allows remote attackers to inject arbitrary web script or HTML via a feed.

Vulnerable Systems

Application

  • Newsgator Feeddemon 2

  • Newsgator Feeddemon 2.0.0.24

  • Newsgator Feeddemon 2.6

  • Newsgator Feeddemon 2.6.1.4

  • Newsgator Feeddemon 2.6.1.5

  • Newsgator Feeddemon 2.7

  • Newsgator Feeddemon 3


References

JVNDB - JVNDB-2012-000056

JVN - JVN#18397171


Last Updated: 27 May 2016 10:56:32