CVE-2013-4167
published 2013-10-11CVE-2013-4167: Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) before 1.11.7 allows remote attackers to inject arbitrary web script or HTML via…
PriorityP417medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
1.16%
63.2th percentile
Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) before 1.11.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cmsmadesimple | cms_made_simple | <= 1.11.6 | — |
| cmsmadesimple | cms_made_simple | — | — |
| cmsmadesimple | cms_made_simple | — | — |
| cmsmadesimple | cms_made_simple | — | — |
| cmsmadesimple | cms_made_simple | — | — |
| cmsmadesimple | cms_made_simple | — | — |
| cmsmadesimple | cms_made_simple | — | — |
| cmsmadesimple | cms_made_simple | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_redhat3.5LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-cp8p-99g9-cxcq: Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) before 1
ghsa_unreviewed·2022-05-17
CVE-2013-4167 [MEDIUM] CWE-79 GHSA-cp8p-99g9-cxcq: Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) before 1
Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) before 1.11.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Red Hat
openstack-neutron: L3-agent denial of service through IPv6 subnet
vendor_redhat·2014-04-17·CVSS 3.5
CVE-2014-4167 [LOW] openstack-neutron: L3-agent denial of service through IPv6 subnet
openstack-neutron: L3-agent denial of service through IPv6 subnet
The L3-agent in OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service (IPv4 address attachment outage) by attaching an IPv6 private subnet to a L3 router.
Package: openstack-neutron (Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)) - Affected
No detection rules found.
No public exploits indexed.
http://forum.cmsmadesimple.org/viewtopic.php?f=1&t=66590&p=299356http://www.openwall.com/lists/oss-security/2013/07/21/1http://www.openwall.com/lists/oss-security/2013/07/25/7https://twitter.com/LeakFree/status/336942367351394305http://forum.cmsmadesimple.org/viewtopic.php?f=1&t=66590&p=299356http://www.openwall.com/lists/oss-security/2013/07/21/1http://www.openwall.com/lists/oss-security/2013/07/25/7https://twitter.com/LeakFree/status/336942367351394305
2013-10-11
Published