Описание
Multiple cross-site scripting (XSS) vulnerabilities in All In One Control Panel (AIOCP) 1.3.009 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this is probably a different vulnerability than CVE-2006-5830.
Ссылки
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1Версия до 1.3.009 (включая)
Одно из
cpe:2.3:a:nicola_asuni:all_in_one_control_panel:*:*:*:*:*:*:*:*
cpe:2.3:a:nicola_asuni:all_in_one_control_panel:1.3.000:*:*:*:*:*:*:*
cpe:2.3:a:nicola_asuni:all_in_one_control_panel:1.3.001:*:*:*:*:*:*:*
cpe:2.3:a:nicola_asuni:all_in_one_control_panel:1.3.002:*:*:*:*:*:*:*
cpe:2.3:a:nicola_asuni:all_in_one_control_panel:1.3.003:*:*:*:*:*:*:*
cpe:2.3:a:nicola_asuni:all_in_one_control_panel:1.3.004:*:*:*:*:*:*:*
cpe:2.3:a:nicola_asuni:all_in_one_control_panel:1.3.005:*:*:*:*:*:*:*
cpe:2.3:a:nicola_asuni:all_in_one_control_panel:1.3.006:*:*:*:*:*:*:*
cpe:2.3:a:nicola_asuni:all_in_one_control_panel:1.3.007:*:*:*:*:*:*:*
cpe:2.3:a:nicola_asuni:all_in_one_control_panel:1.3.008:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01194
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Multiple cross-site scripting (XSS) vulnerabilities in All In One Control Panel (AIOCP) 1.3.009 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this is probably a different vulnerability than CVE-2006-5830.
EPSS
Процентиль: 79%
0.01194
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other