NVD

Id
46930  
Name
CVE-2012-5914  
Description
Multiple cross-site scripting (XSS) vulnerabilities in the sed_import function in system/functions.php in Neocrome Seditio build 160 and 161 allow remote attackers to inject arbitrary web script or HTML via the (1) newmsg or (2) rtext parameter. NOTE: some of these details are obtained from third party information.  
Reject
 
CVSS Version
2  
CVSS Score
2.6  
Severity
Low  
CVSS Base Score
2.6  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2012-11-17  
Modified Date
2012-11-19  
Seq
2012-5914  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
235067 46930 CVE-2012-5914 http://packetstormsecurity.org/files/111320/Seditio-Build-161-Cross-Site-Scripting-Information-Disclosure.html  View
235068 46930 CVE-2012-5914 http://www.neocrome.net/page.php?id=2470  View
235069 46930 CVE-2012-5914 52802  View
235070 46930 CVE-2012-5914 seditio-forums-xss(74463)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
29702 JVNDB-2012-005409 Neocrome Seditio の system/functions.php 内の sed_import 関数におけるクロスサイトスクリプティングの脆弱性 Neocrome Seditio の system/functions.php 内の sed_import 関数には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2012-5914 59152 CVE-2012-5914 46930 2.6 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005409.html 2012-11-17 2012-11-20 View