CVE-2010-3797Cross-site Scripting in Apple MAC OS X Server

CWE-79Cross-site Scripting3 documents3 sources
Severity
3.5LOWNVD
EPSS
0.2%
top 56.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple MAC OS X Server
Timeline
PublishedNov 16
Latest updateMay 17

Description

Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 6.8 | Impact: 2.9

Affected Packages1 packages

NVDapple/mac_os_x_server6 versions+5

Patches

Patch: support.apple.comPatch: support.apple.com

🔴Vulnerability Details

2
GHSA
GHSA-3493-3fv9-cmh2: Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac OS X 102022-05-17
CVEList
CVE-2010-3797: Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac OS X 102010-11-16
CVE-2010-3797 — Cross-site Scripting in Apple | cvebase