Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2013-7417

Cross-site scripting (XSS) vulnerability in cgi-bin/ipinfo.cgi in IPCop (aka IPCop Firewall) before 2.1.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING. NOTE: this can be used to bypass the cross-site request forgery (CSRF) protection mechanism by setting the Referer.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.2%
CVSS Severity
CVSS v2 Score 4.3
Products affected by CVE-2013-7417
  • Ipcop » Ipcop » Version: 2.1.2
    cpe:2.3:o:ipcop:ipcop:2.1.2


Contact Us

Shodan ® - All rights reserved