NVD

Id
46952  
Name
CVE-2012-5949  
Description
Multiple cross-site scripting (XSS) vulnerabilities in IBM TRIRIGA Application Platform 2.x and 3.x before 3.3, and 8, allow remote attackers to inject content, and conduct phishing attacks, via vectors involving (1) the html/en/default/ directory, (2) birt/frameset, (3) WebProcess.srv, (4) sqa/html/en/default/reportTemplate/reportTemplateOrderCols.jsp, or (5) a/html/en/default/om2/omObjectFinder.jsp.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2013-04-23  
Modified Date
2013-05-07  
Seq
2012-5949  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
235125 46952 CVE-2012-5949 http://www-01.ibm.com/support/docview.wss?uid=swg21628851  View
235126 46952 CVE-2012-5949 http://www-01.ibm.com/support/docview.wss?uid=swg21628852  View
235127 46952 CVE-2012-5949 tririga-content-spoofing(80629)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
20872 JVNDB-2013-002447 IBM TRIRIGA Application Platform におけるクロスサイトスクリプティングの脆弱性 IBM TRIRIGA Application Platform には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2012-5949 59187 CVE-2012-5949 46952 4.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-002447.html 2013-04-08 2013-04-24 View