CVE-2016-9998

Опубликовано: 17 дек. 2016

Источник: ubuntu

Приоритет: medium

CVSS2: 4.3

CVSS3: 6.1

Описание

SPIP 3.1.x suffer from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/info_plugin.php involving the $plugin parameter, as demonstrated by a /ecrire/?exec=info_plugin URL.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	3.1.4-2
cosmic	not-affected	3.1.4-2
devel	not-affected	3.1.4-2
disco	not-affected	3.1.4-2
eoan	not-affected	3.1.4-2
esm-apps/bionic	not-affected	3.1.4-2
esm-apps/focal	not-affected	3.1.4-2
esm-apps/jammy	not-affected	3.1.4-2
esm-apps/noble	not-affected	3.1.4-2

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

6.1 Medium

CVSS3

Связанные уязвимости

CVE-2016-9998

CVSS3: 6.1

nvd

около 9 лет назад

SPIP 3.1.x suffer from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/info_plugin.php involving the `$plugin` parameter, as demonstrated by a /ecrire/?exec=info_plugin URL.

CVE-2016-9998

CVSS3: 6.1

debian

около 9 лет назад

SPIP 3.1.x suffer from a Reflected Cross Site Scripting Vulnerability ...

GHSA-qf7v-9pxv-qv56

CVSS3: 6.1

github

больше 3 лет назад

SPIP 3.1.x suffer from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/info_plugin.php involving the `$plugin` parameter, as demonstrated by a /ecrire/?exec=info_plugin URL.

4.3 Medium

CVSS2

6.1 Medium

CVSS3

CVE-2016-9998

Описание

Пакет spip

Ссылки на источники

Связанные уязвимости