CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
Percentile
60.3%
FileMaker Pro contains an “Instant Web Publishing” function. When this function is enabled, FileMaker Pro is vulnerable to cross-scripting.
An arbitrary script may be executed on the user’s web browser.
Upgrade the software
Upgrade to the latest version according to the information provided by the developer.
FileMaker Pro versions 12 and earlier
FileMaker Pro Advanced versions 12 and earlier