Cross-site scripting (XSS) vulnerability in Usermin before 1.600 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2014-3924.
No CVSS v3.1
No CVSS v3.0
Access Vector Network
Access Complexity Medium
Authentication None
Confidentiality Impact None
Integrity Impact Partial
Availability Impact None
AV:N/AC:M/Au:N/C:N/I:P/A:N
Vendors | Products |
---|---|
Webmin |
|
Configuration 1 [-]
|
References
Link | Resource |
---|---|
http://jvn.jp/en/jp/JVN92737498/index.html | Vendor Advisory |
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000058 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: jpcert
Published: 2014-07-20T10:00:00
Updated: 2014-07-20T06:57:01
Reserved: 2014-05-27T00:00:00
Link: CVE-2014-3884
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-07-20T11:12:50.433
Modified: 2014-07-22T22:55:14.520
Link: CVE-2014-3884
JSON object: View
Redhat Information
No data.
CWE