admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2018/1000xxx/CVE-2018-1000611.json
CVE Team 1982d25789
- Synchronized data.
2018-07-09 16:04:41 -04:00

66 lines
1.9 KiB
JSON
Raw Blame History

{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-07-08T15:52:41.187352",
"DATE_REQUESTED" : "2018-07-04T21:50:39",
"ID" : "CVE-2018-1000611",
"REQUESTER" : "andrewklaus@gmail.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "OpenConext EngineBlock",
"version" : {
"version_data" : [
{
"version_value" : "5.7.0 to 5.7.3"
}
]
}
}
]
},
"vendor_name" : "SURFnet"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "SURFnet OpenConext EngineBlock version 5.7.0 to 5.7.3 contains a Cross Site Scripting (XSS) vulnerability that can result in Allows an attacker to inject arbitrary web scripts or HTML into help and login pages. This attack appear to be exploitable via the victim opening a specially crafted URL."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Cross Site Scripting (XSS)"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://github.com/OpenConext/OpenConext-engineblock/pull/563/files",
"refsource" : "CONFIRM",
"url" : "https://github.com/OpenConext/OpenConext-engineblock/pull/563/files"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink