Lucene search
MitreCVELIST:CVE-2012-3790HistoryJun 20, 2012 - 3:00 p.m.
CVE-2012-3790
2012-06-2015:00:00
mitre
www.cve.org
3
cve-2012-3790
xss
adiscon loganalyzer
Cross-site scripting (XSS) vulnerability in index.php in Adiscon LogAnalyzer before 3.4.4 and 3.5.x before 3.5.5 allows remote attackers to inject arbitrary web script or HTML via the highlight parameter in a Search action.
References
loganalyzer.adiscon.com/downloads/loganalyzer-3-4-4-v3-stable
loganalyzer.adiscon.com/downloads/loganalyzer-v3-5-5-v3-beta
loganalyzer.adiscon.com/security-advisories/loganalyzer-cross-site-scripting-vulnerability-in-highlight-parameter
secpod.org/advisories/SecPod_LogAnalyzer_XSS_Vuln.txt
secpod.org/blog/?p=504
Related
cve
cve
CVE-2012-3790
2012-06-20 15:55:01
nvd
nvd
CVE-2012-3790
2012-06-20 15:55:01
ubuntucve
ubuntucve
CVE-2012-3790
2012-06-20 00:00:00
prion
prion
Cross site scripting
2012-06-20 15:55:00
nessus
nessus
LogAnalyzer index.php 'highlight' Parameter XSS
2012-09-17 00:00:00
openvas
openvas
Adiscon LogAnalyzer < 3.4.4, 3.5.x < 3.5.5 XSS Vulnerability - Active Check
2012-06-21 00:00:00