CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-6794

Cross-site scripting (XSS) vulnerability in the Calendar module in Olat 7.8.0.1 (b20130821 N1) allows remote attackers to inject arbitrary web script or HTML via the Location field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 75.0%

CVSS Severity

CVSS v2 Score 4.3

References

http://secunia.com/advisories/55423
http://secunia.com/advisories/55423

Products affected by CVE-2013-6794

Olat » Olat » Version: 7.8.0.1

cpe:2.3:a:olat:olat:7.8.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-6794

Products

Pricing

Contact Us