Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-4923

Опубликовано: 18 фев. 2012
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, 3.1.0, 3.2.0, 3.2.1, and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the num parameter in a view action to index.cgi, related to the log file viewer, a different vulnerability than CVE-2011-3361.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:backuppc:backuppc:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:backuppc:backuppc:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:backuppc:backuppc:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:backuppc:backuppc:3.2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 69%
0.00591
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2011-4923

ubuntu
почти 14 лет назад

Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, 3.1.0, 3.2.0, 3.2.1, and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the num parameter in a view action to index.cgi, related to the log file viewer, a different vulnerability than CVE-2011-3361.

debian логотип

CVE-2011-4923

debian
почти 14 лет назад

Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, ...

github логотип

GHSA-3cx2-p7rj-x3rq

github
больше 3 лет назад

Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, 3.1.0, 3.2.0, 3.2.1, and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the num parameter in a view action to index.cgi, related to the log file viewer, a different vulnerability than CVE-2011-3361.

EPSS

Процентиль: 69%
0.00591
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79