admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2011/CVE-2011-29xx/CVE-2011-2938.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

285 lines
9.4 KiB
JSON
Raw Blame History

{
"id": "CVE-2011-2938",
"sourceIdentifier": "secalert@redhat.com",
"published": "2011-09-21T16:55:04.100",
"lastModified": "2013-08-27T03:15:44.177",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in filter_api.php in MantisBT before 1.2.7 allow remote attackers to inject arbitrary web script or HTML via a parameter, as demonstrated by the project_id parameter to search.php."
},
{
"lang": "es",
"value": "Varias vulnerabilidades de ejecuci\u00f3n de comandos en sitios cruzados (XSS) en filter_api.php en MantisBT antes de la versi\u00f3n v1.2.7 permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s de un par\u00e1metro, tal y como se demuestra por el par\u00e1metro project_id a search.php."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE",
"baseScore": 4.3
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": true
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:*:*:*:*:*:*:*:*",
"versionEndIncluding": "1.2.6",
"matchCriteriaId": "BE0A36B6-B2BE-45C0-91CE-3E264CECAF9D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:0.19.3:*:*:*:*:*:*:*",
"matchCriteriaId": "85A3FBD5-163C-4990-B809-A5C9C81A3C6C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:0.19.4:*:*:*:*:*:*:*",
"matchCriteriaId": "D3FDF456-9648-4A7C-B15A-2828A32D4962"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "6B2602F7-2D93-4E1E-9425-4EDD23752029"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "86DE3BE3-D6C9-4905-9E61-B70776460604"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "F128A2E2-D509-4B50-95C2-1A31C5B3B31F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "140D5F68-1CAB-458C-BC8B-4F726D657FE8"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "0D25F4F5-7678-41C1-93CB-305883A08527"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "D1A1316D-314B-4740-A836-D5E6319F4B28"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "DBD27CCE-28C4-43CC-8CBD-D7FFB46171AC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "97298C43-B881-4C11-ADB6-17A8E43EB84E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "7257ADD7-C9B7-4F85-AA13-615DD033FD5C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "02FE950B-5E29-4FAA-9BE5-79F38B4C38F7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "D6F2BA78-D054-4E49-ABCA-637922898BF7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "4595B1E3-25AB-489E-A847-FDBF2554DD6D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "C11A8F17-5253-475B-89FF-A26EA7531E13"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.1.5:*:*:*:*:*:*:*",
"matchCriteriaId": "4A88B09D-CDCF-45FD-B004-13B597DA4F48"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "49583BE8-B832-4E9F-B154-47A26C72489D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.1.7:*:*:*:*:*:*:*",
"matchCriteriaId": "E2501F40-3630-4528-BE0A-61D4BB6EC7FE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.1.8:*:*:*:*:*:*:*",
"matchCriteriaId": "9223DAF7-D03E-4A4E-8AB5-5CEB87DFF2C3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "CFF77ABF-0A03-437A-B241-1EF2BBB83D24"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "5F096CD6-534E-4ABF-B2DF-D4B55B8C5F6A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A66AB537-6FBA-4A51-B10C-BF61F54BC01B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "A50835BF-D28B-47FF-81F0-C34D95D6F2E9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "BA0EB9A6-1DFD-4C17-A002-0899DA252A56"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mantisbt:mantisbt:1.2.5:*:*:*:*:*:*:*",
"matchCriteriaId": "BBA33285-3EE7-43FD-8347-E7D9A18DC134"
}
]
}
]
}
],
"references": [
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-September/066061.html",
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Patch"
]
},
{
"url": "http://packetstormsecurity.org/files/104149",
"source": "secalert@redhat.com",
"tags": [
"Exploit"
]
},
{
"url": "http://security.gentoo.org/glsa/glsa-201211-01.xml",
"source": "secalert@redhat.com"
},
{
"url": "http://securityreason.com/securityalert/8391",
"source": "secalert@redhat.com"
},
{
"url": "http://www.mantisbt.org/bugs/view.php?id=13245",
"source": "secalert@redhat.com",
"tags": [
"Exploit"
]
},
{
"url": "http://www.openwall.com/lists/oss-security/2011/08/18/7",
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Patch"
]
},
{
"url": "http://www.openwall.com/lists/oss-security/2011/08/19/16",
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Patch"
]
},
{
"url": "http://www.securityfocus.com/bid/49235",
"source": "secalert@redhat.com",
"tags": [
"Exploit"
]
},
{
"url": "https://bugs.gentoo.org/show_bug.cgi?id=379739",
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Patch"
]
},
{
"url": "https://bugs.launchpad.net/ubuntu/+source/mantis/+bug/828857",
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Patch"
]
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=731777",
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Patch"
]
},
{
"url": "https://github.com/mantisbt/mantisbt/commit/317f3db3a3c68775de3acf3b15f55b1e3c18f93b",
"source": "secalert@redhat.com",
"tags": [
"Patch"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink