mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
78 lines
2.4 KiB
JSON
78 lines
2.4 KiB
JSON
{
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"data_version": "4.0",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2017-20097",
|
|
"TITLE": "WP-Filebase Download Manager Plugin cross site scriting",
|
|
"REQUESTER": "cna@vuldb.com",
|
|
"ASSIGNER": "cna@vuldb.com",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"generator": "vuldb.com",
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "WP-Filebase Download Manager Plugin",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "3.4.4"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "CWE-80 Basic Cross Site Scripting"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "A vulnerability was found in WP-Filebase Download Manager Plugin 3.4.4. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to basic cross site scripting. The attack may be launched remotely."
|
|
}
|
|
]
|
|
},
|
|
"credit": "Yorick Koster",
|
|
"impact": {
|
|
"cvss": {
|
|
"version": "3.1",
|
|
"baseScore": "3.5",
|
|
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N"
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "http://seclists.org/fulldisclosure/2017/Feb/78",
|
|
"refsource": "MISC",
|
|
"name": "http://seclists.org/fulldisclosure/2017/Feb/78"
|
|
},
|
|
{
|
|
"url": "https://vuldb.com/?id.97370",
|
|
"refsource": "MISC",
|
|
"name": "https://vuldb.com/?id.97370"
|
|
}
|
|
]
|
|
}
|
|
} |