admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-30 18:21:17 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2010/CVE-2010-04xx/CVE-2010-0465.json

158 lines
5.3 KiB
JSON
Raw Normal View History

bootstrap
2023-04-24 12:24:31 +02:00
{
"id": "CVE-2010-0465",
"sourceIdentifier": "cve@mitre.org",
"published": "2010-03-19T19:30:00.453",
Auto-Update: 2024-11-22T11:10:47.014226+00:00
2024-11-22 11:14:00 +00:00
"lastModified": "2024-11-21T01:12:16.613",
bootstrap
2023-04-24 12:24:31 +02:00
"vulnStatus": "Modified",
Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00
"cveTags": [],
bootstrap
2023-04-24 12:24:31 +02:00
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in the online Documents functionality in SugarCRM 5.2.x before 5.2.0l and 5.5.x before 5.5.0a allows remote authenticated users to inject arbitrary web script or HTML via the Document Name field."
},
{
"lang": "es",
"value": "Vulnerabilidad de ejecuci\u00f3n de secuencias de comandos en sitios cruzados (XSS) en la funcionalidad de documentos en l\u00ednea en SugarCRM v5.2.x anterior a v5.2.0l y v5.5.x anterior a v5.5.0a permite a usuarios autenticados remotamente inyectar secuencias de comandos web o HTML de su elecci\u00f3n a trav\u00e9s del campo \"Document Name\"."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
Auto-Update: 2024-11-22T11:10:47.014226+00:00
2024-11-22 11:14:00 +00:00
"baseScore": 4.3,
bootstrap
2023-04-24 12:24:31 +02:00
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
Auto-Update: 2024-11-22T11:10:47.014226+00:00
2024-11-22 11:14:00 +00:00
"availabilityImpact": "NONE"
bootstrap
2023-04-24 12:24:31 +02:00
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": true
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.2.0g:*:*:*:*:*:*:*",
"matchCriteriaId": "699A9586-0683-4DAA-9E5C-662C0630C6EF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.2a:*:*:*:*:*:*:*",
"matchCriteriaId": "439E75C4-C02D-4905-9D73-CE27D6A54C5A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.2c:*:*:*:*:*:*:*",
"matchCriteriaId": "6BF95EA0-16E7-4173-AEC8-D66A3F8FB62B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.2d:*:*:*:*:*:*:*",
"matchCriteriaId": "BFA524F8-A78F-414A-A5AC-1A89901BD917"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.2e:*:*:*:*:*:*:*",
"matchCriteriaId": "CFCC9802-4642-4331-9D56-4E1F76151E24"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.2f:*:*:*:*:*:*:*",
"matchCriteriaId": "7922DB4E-9812-4636-A61D-8D201CE92D93"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.2g:*:*:*:*:*:*:*",
"matchCriteriaId": "57A8ECCF-AAEC-49B1-B474-E4DD14EE7CF3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.2h:*:*:*:*:*:*:*",
"matchCriteriaId": "5AC18299-07B6-46BB-93DF-E642FE637395"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.5:beta1:*:*:*:*:*:*",
"matchCriteriaId": "B1E9C26A-6845-45C3-A801-E5F1B5B9B0E5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.5:beta2:*:*:*:*:*:*",
"matchCriteriaId": "EF6C4B76-D1CD-4B58-A9FF-5D35EEAC89EA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:sugarcrm:sugarcrm:5.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "3943C856-B008-4E66-802B-762D28B679A6"
}
]
}
]
}
],
"references": [
Auto-Update: 2024-04-04T08:42:25.815847+00:00
2024-04-04 08:46:00 +00:00
{
"url": "http://secunia.com/advisories/38962",
"source": "cve@mitre.org"
},
bootstrap
2023-04-24 12:24:31 +02:00
{
"url": "http://www.securityfocus.com/archive/1/510116/100/0/threaded",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/bid/38772",
"source": "cve@mitre.org"
},
{
"url": "http://www.sugarcrm.com/crm/support/bugs.html?task=view&caseID=db4489b7-b5a8-4a6d-555b-4b9ffa7b4ffa",
"source": "cve@mitre.org"
Auto-Update: 2024-11-22T11:10:47.014226+00:00
2024-11-22 11:14:00 +00:00
},
{
"url": "http://secunia.com/advisories/38962",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.securityfocus.com/archive/1/510116/100/0/threaded",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.securityfocus.com/bid/38772",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.sugarcrm.com/crm/support/bugs.html?task=view&caseID=db4489b7-b5a8-4a6d-555b-4b9ffa7b4ffa",
"source": "af854a3a-2127-422b-91ae-364da2661108"
bootstrap
2023-04-24 12:24:31 +02:00
}
]
}
Reference in New Issue Copy Permalink