Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2012-3382

Cross-site scripting (XSS) vulnerability in the ProcessRequest function in mcs/class/System.Web/System.Web/HttpForbiddenHandler.cs in Mono 2.10.8 and earlier allows remote attackers to inject arbitrary web script or HTML via a file with a crafted name and a forbidden extension, which is not properly handled in an error message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.3%
CVSS Severity
CVSS v2 Score 4.3
Products affected by CVE-2012-3382
  • Mono » Mono » Version: N/A
    cpe:2.3:a:mono:mono:-
  • Mono » Mono » Version: 1.0
    cpe:2.3:a:mono:mono:1.0
  • Mono » Mono » Version: 1.0.5
    cpe:2.3:a:mono:mono:1.0.5
  • Mono » Mono » Version: 1.1.13
    cpe:2.3:a:mono:mono:1.1.13
  • Mono » Mono » Version: 1.1.13.4
    cpe:2.3:a:mono:mono:1.1.13.4
  • Mono » Mono » Version: 1.1.13.6
    cpe:2.3:a:mono:mono:1.1.13.6
  • Mono » Mono » Version: 1.1.13.7
    cpe:2.3:a:mono:mono:1.1.13.7
  • Mono » Mono » Version: 1.1.17
    cpe:2.3:a:mono:mono:1.1.17
  • Mono » Mono » Version: 1.1.17.1
    cpe:2.3:a:mono:mono:1.1.17.1
  • Mono » Mono » Version: 1.1.18
    cpe:2.3:a:mono:mono:1.1.18
  • Mono » Mono » Version: 1.1.4
    cpe:2.3:a:mono:mono:1.1.4
  • Mono » Mono » Version: 1.1.8.3
    cpe:2.3:a:mono:mono:1.1.8.3
  • Mono » Mono » Version: 1.2.5.1
    cpe:2.3:a:mono:mono:1.2.5.1
  • Mono » Mono » Version: 2.0
    cpe:2.3:a:mono:mono:2.0
  • Mono » Mono » Version: 2.10.1
    cpe:2.3:a:mono:mono:2.10.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved