CVE-2013-10010

Опубликовано: 11 янв. 2023

Источник: nvd

CVSS3: 4.3

CVSS3: 6.1

CVSS2: 5

EPSS Низкий

Описание

A vulnerability classified as problematic has been found in zerochplus. This affects the function PrintResList of the file test/mordor/thread.res.pl. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The patch is named 9ddf9ecca8565341d8d26a3b2f64540bde4fa273. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-218007.

Ссылки

https://github.com/zerochplus/zerochplus/commit/9ddf9ecca8565341d8d26a3b2f64540bde4fa273
Patch
Third Party Advisory
https://vuldb.com/?ctiid.218007
Permissions Required
Third Party Advisory
https://vuldb.com/?id.218007
Permissions Required
Third Party Advisory
https://github.com/zerochplus/zerochplus/commit/9ddf9ecca8565341d8d26a3b2f64540bde4fa273
Patch
Third Party Advisory
https://vuldb.com/?ctiid.218007
Permissions Required
Third Party Advisory
https://vuldb.com/?id.218007
Permissions Required
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:zerochplus_project:zerochplus:*:*:*:*:*:*:*:*

Версия до 2013-04-30 (исключая)

EPSS

Процентиль: 52%

0.00291

Низкий

4.3 Medium

CVSS3

6.1 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-48p9-g68q-jgp2

CVSS3: 6.1

github

около 3 лет назад

A vulnerability classified as problematic has been found in zerochplus. This affects the function PrintResList of the file test/mordor/thread.res.pl. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The name of the patch is 9ddf9ecca8565341d8d26a3b2f64540bde4fa273. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-218007.

EPSS

Процентиль: 52%

0.00291

Низкий

4.3 Medium

CVSS3

6.1 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-79