Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3833

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-3833
Last Modified 17 Jul 2012 12:00:00
Published 03 Jul 2012 06:55:02
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-3833

Summary

Cross-site scripting (XSS) vulnerability in the default index page in admin/ in Quick.CMS 4.0 allows remote attackers to inject arbitrary web script or HTML via the p parameter.

Vulnerable Systems

Application

  • Opensolution Quick.cms 4.0


References

XF - quickcms-admin-xss(75224)

BID - 53273

MISC - http://packetstormsecurity.org/files/112243/Quick.CMS-4.0-Cross-Site-Scripting.html

MISC - http://hauntit.blogspot.com/2012/03/en-quickcmsv40-xss-over-get.html


Last Updated: 27 May 2016 10:56:36