CVE-2012-5102
published 2012-09-23CVE-2012-5102: Cross-site scripting (XSS) vulnerability in inc/extensions.php in VertrigoServ 2.25 allows remote attackers to inject arbitrary web script or HTML via the ext…
PriorityP420medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
1.80%
75.8th percentile
Cross-site scripting (XSS) vulnerability in inc/extensions.php in VertrigoServ 2.25 allows remote attackers to inject arbitrary web script or HTML via the ext parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dariusz_handzlik | vertrigoserv | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2012-01/0034.htmlhttp://secunia.com/advisories/47469http://www.infoserve.de/system/files/advisories/INFOSERVE-ADV2011-11.txthttp://www.osvdb.org/78136http://www.securityfocus.com/bid/51293https://exchange.xforce.ibmcloud.com/vulnerabilities/72140http://archives.neohapsis.com/archives/bugtraq/2012-01/0034.htmlhttp://secunia.com/advisories/47469http://www.infoserve.de/system/files/advisories/INFOSERVE-ADV2011-11.txthttp://www.osvdb.org/78136http://www.securityfocus.com/bid/51293https://exchange.xforce.ibmcloud.com/vulnerabilities/72140
2012-09-23
Published