Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3842

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-3842
Last Modified 17 Jul 2012 12:00:00
Published 03 Jul 2012 06:55:03
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-3842

Summary

Multiple cross-site scripting (XSS) vulnerabilities in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the (1) select0 or (2) select8 parameters.

Vulnerable Systems

Application

  • Jbmc-software Directadmin 1.403


References

MISC - http://www.vulnerability-lab.com/get_content.php?id=509

BID - 53281

BUGTRAQ - 20120426 DirectAdmin v1.403 - Multiple Cross Site Vulnerabilities


Last Updated: 27 May 2016 10:44:48