Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-6514

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-6514
Last Modified 05 May 2014 01:17:21
Published 23 Jan 2013 08:55:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-6514

Summary

Cross-site scripting (XSS) vulnerability in the nBill (com_nbill) component 2.3.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the message parameter in an income action to administrator/index.php.

Vulnerable Systems

Application

  • Netshinesoftware Com Netinvoice 2.3.2


References

BID - 53275

SECUNIA - 49004

MISC - http://packetstormsecurity.org/files/112235/Joomla-nBill-Lite-Cross-Site-Scripting.html

MISC - http://hauntit.blogspot.com/2012/04/en-nbill-lite-joomla-component-html.html


Last Updated: 27 May 2016 10:49:52