CVE-2011-3858
published 2011-09-28CVE-2011-3858: Cross-site scripting (XSS) vulnerability in the Pixiv Custom theme before 2.1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML…
PriorityP420medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
3.79%
88.6th percentile
Cross-site scripting (XSS) vulnerability in the Pixiv Custom theme before 2.1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.
Affected
31 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| zespia | pixiv_custom | <= 2.1.5 | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
| zespia | pixiv_custom | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_redhat7.2HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-r6wx-xhhc-v6cw: Cross-site scripting (XSS) vulnerability in the Pixiv Custom theme before 2
ghsa_unreviewed·2022-05-17
CVE-2011-3858 [MEDIUM] CWE-79 GHSA-r6wx-xhhc-v6cw: Cross-site scripting (XSS) vulnerability in the Pixiv Custom theme before 2
Cross-site scripting (XSS) vulnerability in the Pixiv Custom theme before 2.1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.
Red Hat
kernel: setup_arg_pages: diagnose excessive argument size
vendor_redhat·2010-08-13·CVSS 7.2
CVE-2010-3858 [HIGH] kernel: setup_arg_pages: diagnose excessive argument size
kernel: setup_arg_pages: diagnose excessive argument size
The setup_arg_pages function in fs/exec.c in the Linux kernel before 2.6.36, when CONFIG_STACK_GROWSDOWN is used, does not properly restrict the stack memory consumption of the (1) arguments and (2) environment for a 32-bit application on a 64-bit platform, which allows local users to cause a denial of service (system crash) via a crafted exec system call, a related issue to CVE-2010-2240.
Statement: This issue did not affect the versions of Linux kernel as shipped with Red Hat
Enterprise Linux 4 as they did not backport the upstream commit b6a2fea3 that introduced the issue. This was addressed in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0004.html and
https://rhn.redhat.com/
No detection rules found.
Exploit-DB
WordPress Theme Pixiv Custom Theme 2.1.5 - 'cpage' Cross-Site Scripting
exploitdb·2011-09-29
CVE-2011-3858 WordPress Theme Pixiv Custom Theme 2.1.5 - 'cpage' Cross-Site Scripting
WordPress Theme Pixiv Custom Theme 2.1.5 - 'cpage' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/49875/info
The Pixiv Custom theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.
Pixiv Custom theme 2.1.5 is vulnerable; prior versions may also be affected.
http://www.example.com/?cpage=[xss]
Exploit-DB
Sun Microsystems SunScreen Firewall - Privilege Escalation
exploitdb·2011-01-25
CVE-2011-0902 Sun Microsystems SunScreen Firewall - Privilege Escalation
Sun Microsystems SunScreen Firewall - Privilege Escalation
---
/*
Sun Microsystems SunScreen Firewall Root Exploit
discovered & exploited by Kingcope
January 2011
The SunScreen Firewall can be administrated remotely via a java protocol service
which is running on port 3858 on a SunOS machine.
This Java Service contains numerous buffer overruns (2 of which I am aware of).
Furthermore it is possible to execute arbitrary code if an attacker manages
to upload a file onto the target system.
As you can see in the following java exploit code the environment
is not properly sanitized prior to executing shell scripts as root,
thus one can use the LD technique to preload binaries or even easier
modify the PATH variable to forge the ´cat´ binary (which is executed by lib/screenname)
to be execu
No writeups or analysis indexed.
2011-09-28
Published