PT-2012-4352 · Artiphp · Artiphp Cms
Gjoko Krstic
·
Publicado
2012-05-21
·
Atualizado
2017-08-29
·
CVE-2012-2906
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Artiphp CMS version 5.5.0 Neo (r422)
Description
The issue allows remote attackers to inject arbitrary web script or HTML via vulnerable parameters. The parameters
add img name post, asciiart post, expediteur, titre sav, or z39d27af885b32758ac0e7d4014a61561 are affected.Recommendations
For Artiphp CMS version 5.5.0 Neo (r422), consider restricting the use of the parameters
add img name post, asciiart post, expediteur, titre sav, or z39d27af885b32758ac0e7d4014a61561 to minimize the risk of exploitation.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Artiphp Cms