CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-2289

Cross-site scripting (XSS) vulnerability in admin/templates/default.php in Batavi 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING to admin/index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.4%

CVSS Severity

CVSS v2 Score 4.3

References

http://secunia.com/advisories/52464
https://exchange.xforce.ibmcloud.com/vulnerabilities/82583
https://www.dognaedis.com/vulns/DGS-SEC-18.html
http://secunia.com/advisories/52464
https://exchange.xforce.ibmcloud.com/vulnerabilities/82583
https://www.dognaedis.com/vulns/DGS-SEC-18.html

Products affected by CVE-2013-2289

Batavi » Batavi » Version: 1.2.2

cpe:2.3:a:batavi:batavi:1.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-2289

Products

Pricing

Contact Us