Vulnerability Details CVE-2012-10003
A vulnerability, which was classified as problematic, has been found in ahmyi RivetTracker. This issue affects some unknown processing. The manipulation of the argument $_SERVER['PHP_SELF'] leads to cross site scripting. The attack may be initiated remotely. The patch is named f053c5cc2bc44269b0496b5f275e349928a92ef9. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217271.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.6%
CVSS Severity
CVSS v3 Score 3.5
CVSS v2 Score 4.0
References
- https://github.com/ahmyi/rivettracker/commit/f053c5cc2bc44269b0496b5f275e349928a92ef9
- https://github.com/ahmyi/rivettracker/pull/1
- https://vuldb.com/?ctiid.217271
- https://vuldb.com/?id.217271
- https://github.com/ahmyi/rivettracker/commit/f053c5cc2bc44269b0496b5f275e349928a92ef9
- https://github.com/ahmyi/rivettracker/pull/1
- https://vuldb.com/?ctiid.217271
- https://vuldb.com/?id.217271
Products affected by CVE-2012-10003
-
cpe:2.3:a:rivettracker_project:rivettracker:-