Описание
Multiple cross-site scripting (XSS) vulnerabilities in KnowledgeTree before 3.5.4a allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-4281.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.5.4 (включая)
Одно из
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:*:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.3a:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.3b:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.1:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.1a:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.1b:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.3:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.4:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.5:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.6:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.7:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.4:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.5:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.6:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4a:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.5.2:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.5.2a:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.5.2b:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.5.2c:*:*:*:*:*:*:*
cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.5.3:*:*:*:*:*:*:*
EPSS
Процентиль: 52%
0.00285
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
ubuntu
почти 17 лет назад
Multiple cross-site scripting (XSS) vulnerabilities in KnowledgeTree before 3.5.4a allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-4281.
github
больше 3 лет назад
Multiple cross-site scripting (XSS) vulnerabilities in KnowledgeTree before 3.5.4a allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-4281.
EPSS
Процентиль: 52%
0.00285
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79