CVE-2016-9997

Опубликовано: 17 дек. 2016

Источник: ubuntu

Приоритет: medium

CVSS2: 4.3

CVSS3: 6.1

Описание

SPIP 3.1.x suffers from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/puce_statut.php involving the $id parameter, as demonstrated by a /ecrire/?exec=puce_statut URL.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	3.1.4-2
cosmic	not-affected	3.1.4-2
devel	not-affected	3.1.4-2
disco	not-affected	3.1.4-2
eoan	not-affected	3.1.4-2
esm-apps/bionic	not-affected	3.1.4-2
esm-apps/focal	not-affected	3.1.4-2
esm-apps/jammy	not-affected	3.1.4-2
esm-apps/noble	not-affected	3.1.4-2

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

6.1 Medium

CVSS3

Связанные уязвимости

CVE-2016-9997

CVSS3: 6.1

nvd

около 9 лет назад

SPIP 3.1.x suffers from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/puce_statut.php involving the `$id` parameter, as demonstrated by a /ecrire/?exec=puce_statut URL.

CVE-2016-9997

CVSS3: 6.1

debian

около 9 лет назад

SPIP 3.1.x suffers from a Reflected Cross Site Scripting Vulnerability ...

GHSA-2jqw-7pmw-3pxf

CVSS3: 6.1

github

больше 3 лет назад

SPIP 3.1.x suffers from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/puce_statut.php involving the `$id` parameter, as demonstrated by a /ecrire/?exec=puce_statut URL.

4.3 Medium

CVSS2

6.1 Medium

CVSS3

CVE-2016-9997

Описание

Пакет spip

Ссылки на источники

Связанные уязвимости