NVD

Id
46157  
Name
CVE-2012-4891  
Description
Cross-site scripting (XSS) vulnerability in fw/index2.do in ManageEngine Firewall Analyzer 7.2 allows remote attackers to inject arbitrary web script or HTML via the url parameter, a different vector than CVE-2012-4889. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2012-09-10  
Modified Date
2016-09-06  
Seq
2012-4891  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
231559 46157 CVE-2012-4891 http://packetstormsecurity.com/files/130169/ManageEngine-Firewall-Analyzer-8.0-Directory-Traversal-XSS.html  View
231560 46157 CVE-2012-4891 35933  View
231561 46157 CVE-2012-4891 manageengine-firewallanalyzer-xss(100551)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
28574 JVNDB-2012-004281 ManageEngine Firewall Analyzer の fw/index2.do におけるクロスサイトスクリプティングの脆弱性 ManageEngine Firewall Analyzer の fw/index2.do には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2012-4891 58129 CVE-2012-4891 46157 4.3 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004281.html 2012-09-10 2012-09-12 View