NVD

Id
39305  
Name
CVE-2013-3515  
Description
Multiple cross-site scripting (XSS) vulnerabilities in OpenX Source 2.8.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) package parameter to www/admin/plugin-index.php or the (2) group parameter to www/admin/plugin-settings.php.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-18  
Published
2013-07-29  
Modified Date
2013-07-30  
Seq
2013-3515  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
200616 39305 CVE-2013-3515 20130703 Multiple Vulnerabilities in OpenX  View
200617 39305 CVE-2013-3515 26624  View
200618 39305 CVE-2013-3515 openx-cve20133515-multiple-xss(85411)  View
200619 39305 CVE-2013-3515 https://svn.openx.org/openx/trunk/www/admin/plugin-index.php  View
200620 39305 CVE-2013-3515 https://svn.openx.org/openx/trunk/www/admin/plugin-settings.php  View
200621 39305 CVE-2013-3515 https://www.htbridge.com/advisory/HTB23155  View
200622 39305 CVE-2013-3515 https://www.htbridge.com/advisory/HTB23155-openx-changeset-82710.diff  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
21971 JVNDB-2013-003546 OpenX Source におけるクロスサイトスクリプティングの脆弱性 OpenX Source には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2013-3515 63457 CVE-2013-3515 39305 4.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-003546.html 2013-05-08 2013-07-31 View