Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5102

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-5102
Last Modified 24 Sep 2012 12:00:00
Published 23 Sep 2012 01:55:04
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-5102

Summary

Cross-site scripting (XSS) vulnerability in inc/extensions.php in VertrigoServ 2.25 allows remote attackers to inject arbitrary web script or HTML via the ext parameter.

Vulnerable Systems

Application

  • Dariusz Handzlik Vertrigoserv 2.25


References

XF - vertrigoserv-extensions-xss(72140)

BID - 51293

OSVDB - 78136

MISC - http://www.infoserve.de/system/files/advisories/INFOSERVE-ADV2011-11.txt

SECUNIA - 47469

BUGTRAQ - 20120105 VertrigoServ 2.25 Cross-Site-Scripting vulnerability


Last Updated: 27 May 2016 11:00:48