CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-2563

Multiple cross-site scripting (XSS) vulnerabilities in Bloxx Web Filtering before 5.0.14 allow (1) remote attackers to inject arbitrary web script or HTML via web traffic that is examined within the Bloxx Reports component, and allow (2) remote authenticated administrators to inject arbitrary web script or HTML via vectors involving administrative menu functions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.2%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.kb.cert.org/vuls/id/722963
http://www.kb.cert.org/vuls/id/MAPG-8R9LBY
http://www.securityfocus.com/bid/53715
http://www.kb.cert.org/vuls/id/722963
http://www.kb.cert.org/vuls/id/MAPG-8R9LBY
http://www.securityfocus.com/bid/53715

Products affected by CVE-2012-2563

Bloxx » Web Filtering » Version: Any

cpe:2.3:a:bloxx:web_filtering:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2563

Products

Pricing

Contact Us