CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2235

Cross-site scripting (XSS) vulnerability in Support Incident Tracker (SiT!) 3.65 and earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter to index.php, which is not properly handled in an error message.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.3%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2012-2235

Sitracker » Support Incident Tracker » Version: 1.8.00

cpe:2.3:a:sitracker:support_incident_tracker:1.8.00
Sitracker » Support Incident Tracker » Version: 10.8.00

cpe:2.3:a:sitracker:support_incident_tracker:10.8.00
Sitracker » Support Incident Tracker » Version: 11.8.00

cpe:2.3:a:sitracker:support_incident_tracker:11.8.00
Sitracker » Support Incident Tracker » Version: 14.8.00

cpe:2.3:a:sitracker:support_incident_tracker:14.8.00
Sitracker » Support Incident Tracker » Version: 16.8.00

cpe:2.3:a:sitracker:support_incident_tracker:16.8.00
Sitracker » Support Incident Tracker » Version: 17.8.00

cpe:2.3:a:sitracker:support_incident_tracker:17.8.00
Sitracker » Support Incident Tracker » Version: 18.8.00

cpe:2.3:a:sitracker:support_incident_tracker:18.8.00
Sitracker » Support Incident Tracker » Version: 2.8.00

cpe:2.3:a:sitracker:support_incident_tracker:2.8.00
Sitracker » Support Incident Tracker » Version: 21.8.00

cpe:2.3:a:sitracker:support_incident_tracker:21.8.00
Sitracker » Support Incident Tracker » Version: 3.00

cpe:2.3:a:sitracker:support_incident_tracker:3.00
Sitracker » Support Incident Tracker » Version: 3.01

cpe:2.3:a:sitracker:support_incident_tracker:3.01
Sitracker » Support Incident Tracker » Version: 3.02

cpe:2.3:a:sitracker:support_incident_tracker:3.02
Sitracker » Support Incident Tracker » Version: 3.03

cpe:2.3:a:sitracker:support_incident_tracker:3.03
Sitracker » Support Incident Tracker » Version: 3.03a

cpe:2.3:a:sitracker:support_incident_tracker:3.03a
Sitracker » Support Incident Tracker » Version: 3.04a

cpe:2.3:a:sitracker:support_incident_tracker:3.04a
Sitracker » Support Incident Tracker » Version: 3.05

cpe:2.3:a:sitracker:support_incident_tracker:3.05
Sitracker » Support Incident Tracker » Version: 3.06

cpe:2.3:a:sitracker:support_incident_tracker:3.06
Sitracker » Support Incident Tracker » Version: 3.07

cpe:2.3:a:sitracker:support_incident_tracker:3.07
Sitracker » Support Incident Tracker » Version: 3.45

cpe:2.3:a:sitracker:support_incident_tracker:3.45
Sitracker » Support Incident Tracker » Version: 3.50

cpe:2.3:a:sitracker:support_incident_tracker:3.50
Sitracker » Support Incident Tracker » Version: 3.51

cpe:2.3:a:sitracker:support_incident_tracker:3.51
Sitracker » Support Incident Tracker » Version: 3.6

cpe:2.3:a:sitracker:support_incident_tracker:3.6
Sitracker » Support Incident Tracker » Version: 3.60

cpe:2.3:a:sitracker:support_incident_tracker:3.60
Sitracker » Support Incident Tracker » Version: 3.61

cpe:2.3:a:sitracker:support_incident_tracker:3.61
Sitracker » Support Incident Tracker » Version: 3.62

cpe:2.3:a:sitracker:support_incident_tracker:3.62
Sitracker » Support Incident Tracker » Version: 3.63

cpe:2.3:a:sitracker:support_incident_tracker:3.63
Sitracker » Support Incident Tracker » Version: 3.64

cpe:2.3:a:sitracker:support_incident_tracker:3.64
Sitracker » Support Incident Tracker » Version: 3.65

cpe:2.3:a:sitracker:support_incident_tracker:3.65
Sitracker » Support Incident Tracker » Version: 31.07.00

cpe:2.3:a:sitracker:support_incident_tracker:31.07.00
Sitracker » Support Incident Tracker » Version: 4.8.00

cpe:2.3:a:sitracker:support_incident_tracker:4.8.00
Sitracker » Support Incident Tracker » Version: 7.8.00

cpe:2.3:a:sitracker:support_incident_tracker:7.8.00
Sitracker » Support Incident Tracker » Version: 8.8.00

cpe:2.3:a:sitracker:support_incident_tracker:8.8.00
Sitracker » Support Incident Tracker » Version: 9.8.00

cpe:2.3:a:sitracker:support_incident_tracker:9.8.00

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2235

Products

Pricing

Contact Us