Vulnerability Details CVE-2012-10002
A vulnerability was found in ahmyi RivetTracker. It has been declared as problematic. Affected by this vulnerability is the function changeColor of the file css.php. The manipulation of the argument set_css leads to cross site scripting. The attack can be launched remotely. The patch is named 45a0f33876d58cb7e4a0f17da149e58fc893b858. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217267.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.6%
CVSS Severity
CVSS v3 Score 3.5
CVSS v2 Score 4.0
References
- https://github.com/ahmyi/rivettracker/commit/45a0f33876d58cb7e4a0f17da149e58fc893b858
- https://github.com/ahmyi/rivettracker/pull/1
- https://vuldb.com/?ctiid.217267
- https://vuldb.com/?id.217267
- https://github.com/ahmyi/rivettracker/commit/45a0f33876d58cb7e4a0f17da149e58fc893b858
- https://github.com/ahmyi/rivettracker/pull/1
- https://vuldb.com/?ctiid.217267
- https://vuldb.com/?id.217267
Products affected by CVE-2012-10002
-
cpe:2.3:a:rivettracker_project:rivettracker:-
-
cpe:2.3:a:rivettracker_project:rivettracker:2012-03-03