NVD

Id
41741  
Name
CVE-2013-6882  
Description
Multiple cross-site scripting (XSS) vulnerabilities in CRU Ditto Forensic FieldStation with firmware 2013Oct15a and earlier allow (1) remote attackers to inject arbitrary web script or HTML via the username parameter in a login or (2) remote authenticated users to inject arbitrary web script or HTML via unspecified form fields.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-18  
Published
2013-12-17  
Modified Date
2014-01-13  
Seq
2013-6882  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
210942 41741 CVE-2013-6882 http://packetstormsecurity.com/files/124420/Ditto-Forensic-FieldStation-2013Oct15a-XSS-CSRF-Command-Execution.html  View
210943 41741 CVE-2013-6882 20131212 Ditto Forensic FieldStation, multiple vulnerabilities  View
210944 41741 CVE-2013-6882 30396  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
24028 JVNDB-2013-005603 CRU Ditto Forensic FieldStation のファームウェアにおけるクロスサイトスクリプティングの脆弱性 CRU Ditto Forensic FieldStation のファームウェアには、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2013-6882 66824 CVE-2013-6882 41741 4.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-005603.html 2013-12-12 2013-12-19 View