Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-1564

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2015-1564
Last Modified 09 Feb 2015 02:28:43
Published 09 Feb 2015 12:59:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-1564

Summary

Cross-site scripting (XSS) vulnerability in style-underground/search in Plain Black WebGUI 7.10.29 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search field.

Vulnerable Systems

Application

  • Plainblack Webgui 7.10.29


References

MISC - http://secupent.com/exploit/WebGUI-7.10.29-XSS.txt

FULLDISC - 20150120 WebGUI 7.10.29 stable version Cross site scripting vulnerability


Last Updated: 27 May 2016 11:07:44