Lucene search
Japan Vulnerability NotesJVN:35256978HistoryFeb 15, 2012 - 12:00 a.m.
JVN#35256978: cforms II vulnerable to cross-site scripting
2012-02-1500:00:00
Japan Vulnerability Notes
jvn.jp
22
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.003
Percentile
71.2%
cforms II provided by delicious days is a plugin for WordPress. cforms II contains a cross-site scripting vulnerability.
Impact
An arbitrary script may be executed on the userβs web browser.
Solution
Update the Software
Update to the latest version according to the information provided by the developer.
Products Affected
- cforms II v13.1 and earlier
Related
packetstorm
packetstorm
cforms WordPress Plugin Cross Site Scripting
2010-11-02 00:00:00
patchstack
patchstack
securityvulns
securityvulns
exploitdb
exploitdb
wpvulndb
wpvulndb
Cforms <= 13.1 - 'lib_ajax.php' Cross-Site Scripting (XSS)
2010-11-01 00:00:00
checkpoint_advisories
checkpoint_advisories
nvd
nvd
CVE-2010-3977
2010-11-03 13:37:09
nessus
nessus
cformsII Plugin for WordPress 'rs' Parameter XSS
2010-11-08 00:00:00
seebug
seebug
WordPress cformsIIζδ»Άrsεrsargsεζ°θζ¬ζ³¨ε
₯ζΌζ΄
2010-11-03 00:00:00
prion
prion
Cross site scripting
2010-11-03 13:37:00
cve
cve
CVE-2010-3977
2010-11-03 13:37:09
openvas
openvas
cvelist
cvelist
CVE-2010-3977
2010-11-03 01:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.003
Percentile
71.2%
Related for JVN:35256978