Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-5693
cve
2013
5693
cross-site scripting
xss
vulnerability
x2engine
x2crm
remote attackers
web script
html
index.php
admin
editor
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
77.8%
Cross-site scripting (XSS) vulnerability in X2Engine X2CRM before 3.5 allows remote attackers to inject arbitrary web script or HTML via the model parameter to index.php/admin/editor.
Affected configurations
Node
x2enginex2crmRange≤3.4.1
ORx2enginex2crmMatch1.0
ORx2enginex2crmMatch1.0.1
ORx2enginex2crmMatch1.1.0
ORx2enginex2crmMatch1.2.0
ORx2enginex2crmMatch1.2.1
ORx2enginex2crmMatch1.2.2
ORx2enginex2crmMatch1.3
ORx2enginex2crmMatch1.3.1
ORx2enginex2crmMatch2.2
ORx2enginex2crmMatch2.2.1
ORx2enginex2crmMatch2.5
ORx2enginex2crmMatch2.5.2
ORx2enginex2crmMatch2.7
ORx2enginex2crmMatch2.7.1
ORx2enginex2crmMatch2.7.2
ORx2enginex2crmMatch2.8
ORx2enginex2crmMatch2.8.1
ORx2enginex2crmMatch2.9
ORx2enginex2crmMatch2.9.1
ORx2enginex2crmMatch3.0
ORx2enginex2crmMatch3.0.1
ORx2enginex2crmMatch3.0.2
ORx2enginex2crmMatch3.1
ORx2enginex2crmMatch3.1.1
ORx2enginex2crmMatch3.1.2
ORx2enginex2crmMatch3.2
ORx2enginex2crmMatch3.3
ORx2enginex2crmMatch3.3.1
ORx2enginex2crmMatch3.3.2
ORx2enginex2crmMatch3.4
Related
prion
prion
Cross site scripting
2013-09-30 22:55:00
nvd
nvd
CVE-2013-5693
2013-09-30 22:55:05
cvelist
cvelist
CVE-2013-5693
2022-10-03 16:14:55
exploitpack
exploitpack
X2CRM 3.4.1 - Multiple Vulnerabilities
2013-09-25 00:00:00
nessus
nessus
X2Engine < 3.5.1 Multiple Vulnerabilities
2015-02-25 00:00:00
packetstorm
packetstorm
X2CRM 3.4.1 Cross Site Scripting / Local File Inclusion
2013-09-25 00:00:00
htbridge
htbridge
Multiple Vulnerabilities in X2CRM
2013-09-04 00:00:00
securityvulns
securityvulns
Multiple Vulnerabilities in X2CRM
2013-10-02 00:00:00
seebug
seebug
X2CRM 3.4.1 - Multiple Vulnerabilities
2014-07-01 00:00:00
exploitdb
exploitdb
X2CRM 3.4.1 - Multiple Vulnerabilities
2013-09-25 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
77.8%
Related for CVE-2013-5693