Vulnerability Details CVE-2010-4901
Multiple cross-site scripting (XSS) vulnerabilities in char_map.php in MySource Matrix 3.28.3 allow remote attackers to inject arbitrary web script or HTML via the (1) height or (2) width parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.113
EPSS Ranking 93.2%
CVSS Severity
CVSS v2 Score 4.3
References
- http://osvdb.org/67838
- http://secunia.com/advisories/41295
- http://securityreason.com/securityalert/8439
- http://www.packetstormsecurity.org/1009-advisories/ZSL-2010-4962.txt
- http://www.securityfocus.com/bid/43020
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4962.php
- http://osvdb.org/67838
- http://secunia.com/advisories/41295
- http://securityreason.com/securityalert/8439
- http://www.packetstormsecurity.org/1009-advisories/ZSL-2010-4962.txt
- http://www.securityfocus.com/bid/43020
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4962.php
Products affected by CVE-2010-4901
-
cpe:2.3:a:squiz:mysource_matrix:3.28.3