CVE-2011-3199

Опубликовано: 21 мар. 2014

Источник: nvd

CVSS2: 3.5

EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in Domain Technologie Control (DTC) before 0.34.1 allow remote authenticated users to inject arbitrary web script or HTML via the (1) message body of a support ticket or unspecified vectors to the (2) DNS and (3) MX form, as demonstrated by the "Domain root TXT record:" field.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gplhost:domain_technologie_control:*:*:*:*:*:*:*:*

Версия до 0.32.11 (включая)

cpe:2.3:a:gplhost:domain_technologie_control:0.24.6:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.25.1:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.25.2:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.25.3:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.26.7:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.26.8:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.26.9:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.27.3:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.28.2:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.28.3:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.28.4:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.28.6:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.28.9:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.28.10:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.29.1:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.29.6:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.29.8:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.29.10:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.29.14:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.29.15:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.29.16:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.29.17:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.30.6:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.30.8:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.30.10:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.30.18:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.30.20:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.32.1:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.32.2:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.32.3:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.32.4:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.32.5:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.32.6:*:*:*:*:*:*:*

cpe:2.3:a:gplhost:domain_technologie_control:0.32.7:*:*:*:*:*:*:*

EPSS

Процентиль: 46%

0.00232

Низкий

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

CVE-2011-3199

ubuntu

почти 12 лет назад

CVE-2011-3199

debian

почти 12 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Domain Technolo ...

GHSA-q6wp-983f-jwgg

github

больше 3 лет назад

EPSS

Процентиль: 46%

0.00232

Низкий

3.5 Low

CVSS2

Дефекты

CWE-79