CVE-2011-3689

2011-09-2719:00:00

mitre

www.cve.org

cross-site scripting

licenses.html

wibu-systems codemeter webadmin

boxserial parameter

AI Score

5.7

Confidence

High

EPSS

0.001

Percentile

50.9%

JSON

Cross-site scripting (XSS) vulnerability in Licenses.html in Wibu-Systems CodeMeter WebAdmin 3.30 and 4.30 allows remote attackers to inject arbitrary web script or HTML via the BoxSerial parameter.

References

www.solutionary.com/index/SERT/Vuln-Disclosures/CodeMeter-WebAdmin.html