NVD

Id
46183  
Name
CVE-2012-4923  
Description
Multiple cross-site scripting (XSS) vulnerabilities in Endian Firewall 2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) createrule parameter to dnat.cgi, (2) addrule parameter to dansguardian.cgi, or (3) PATH_INFO to openvpn_users.cgi.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2012-09-15  
Modified Date
2012-09-18  
Seq
2012-4923  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
231621 46183 CVE-2012-4923 http://packetstormsecurity.org/files/109942/Endian-UTM-Firewall-2.4.x-Cross-Site-Scripting.html  View
231622 46183 CVE-2012-4923 52076  View
231623 46183 CVE-2012-4923 http://www.vulnerability-lab.com/get_content.php?id=436  View
231624 46183 CVE-2012-4923 endianfirewall-multiple-xss(73330)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
28721 JVNDB-2012-004428 Endian Firewall におけるクロスサイトスクリプティングの脆弱性 Endian Firewall には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2012-4923 58161 CVE-2012-4923 46183 4.3 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004428.html 2012-09-15 2012-09-19 View