CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-6608

Cross-site scripting (XSS) vulnerability in xmlservices/E_book.php in Elastix 2.3.0 allows remote attackers to inject arbitrary web script or HTML via the Page parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 72.1%

CVSS Severity

CVSS v2 Score 4.3

References

http://packetstormsecurity.com/files/118454/Elastix-2.3.0-Cross-Site-Scripting.html
http://secunia.com/advisories/55739
http://packetstormsecurity.com/files/118454/Elastix-2.3.0-Cross-Site-Scripting.html
http://secunia.com/advisories/55739

Products affected by CVE-2012-6608

Elastix » Elastix » Version: 2.3.0

cpe:2.3:a:elastix:elastix:2.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-6608

Products

Pricing

Contact Us