Lucene search

MitreCVE-2010-0321

HistoryJan 15, 2010 - 7:30 p.m.

CVE-2010-0321

2010-01-1519:30:00

CWE-79

mitre

web.nvd.nist.gov

cve-2010-0321

cross-site scripting

xss

jamit job board 3.0

remote attackers

web script

html

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.033

Percentile

91.4%

JSON

Cross-site scripting (XSS) vulnerability in jobs/index.php in Jamit Job Board 3.0 allows remote attackers to inject arbitrary web script or HTML via the post_id parameter.

Affected configurations

Nvd

Node

jamitjamit_job_boardMatch3.0

VendorProductVersionCPE
jamitjamit_job_board3.0cpe:2.3:a:jamit:jamit_job_board:3.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
jamit	jamit_job_board	3.0	cpe:2.3:a:jamit:jamit_job_board:3.0:::::::*

References

packetstormsecurity.org/1001-exploits/jamitjobboard-xss.txt

secunia.com/advisories/32797

www.exploit-db.com/exploits/11073

www.securityfocus.com/bid/37701

exchange.xforce.ibmcloud.com/vulnerabilities/55500

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.033

Percentile

91.4%

JSON

Related for CVE-2010-0321