NVD

Id
40639  
Name
CVE-2013-5309  
Description
Cross-site scripting (XSS) vulnerability in install/forum_data/src/custom_fields.inc.t in FUDforum 3.0.4.1 and earlier, when registering a new user, allows remote attackers to inject arbitrary web script or HTML via a custom profile field to index.php. NOTE: some of these details are obtained from third party information.  
Reject
 
CVSS Version
2  
CVSS Score
2.6  
Severity
Low  
CVSS Base Score
2.6  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-18  
Published
2013-08-16  
Modified Date
2013-08-20  
Seq
2013-5309  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
205829 40639 CVE-2013-5309 http://sourceforge.net/p/fudforum/code/5589/  View
205830 40639 CVE-2013-5309 fudforum-index-xss(86030)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
22197 JVNDB-2013-003772 FUDforum の install/forum_data/src/custom_fields.inc.t におけるクロスサイトスクリプティングの脆弱性 FUDforum の install/forum_data/src/custom_fields.inc.t には、新しいユーザを登録する場合、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2013-5309 65251 CVE-2013-5309 40639 4.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-003772.html 2013-02-17 2013-08-20 View