CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-4913

Cross-site scripting (XSS) vulnerability in the search feature in ColdGen ColdUserGroup 1.06 allows remote attackers to inject arbitrary web script or HTML via the Keywords parameter. NOTE: some of these details are obtained from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.028

EPSS Ranking 85.7%

CVSS Severity

CVSS v2 Score 4.3

References

http://packetstormsecurity.org/1009-exploits/coldusergroup-sql.txt
http://secunia.com/advisories/41335
http://securityreason.com/securityalert/8448
http://www.exploit-db.com/exploits/14935
http://www.securityfocus.com/bid/43035
http://packetstormsecurity.org/1009-exploits/coldusergroup-sql.txt
http://secunia.com/advisories/41335
http://securityreason.com/securityalert/8448
http://www.exploit-db.com/exploits/14935
http://www.securityfocus.com/bid/43035

Products affected by CVE-2010-4913

Coldgen » Coldusergroup » Version: 1.06

cpe:2.3:a:coldgen:coldusergroup:1.06

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-4913

Products

Pricing

Contact Us