CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-0967

Multiple cross-site scripting (XSS) vulnerabilities in SearchBlox before 8.2 allow remote attackers to inject arbitrary web script or HTML via (1) the search field in plugin/index.html or (2) the title field in the Create Featured Result form in admin/main.jsp.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.9%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2015-0967

Searchblox » Searchblox » Version: N/A

cpe:2.3:a:searchblox:searchblox:-
Searchblox » Searchblox » Version: 6.2

cpe:2.3:a:searchblox:searchblox:6.2
Searchblox » Searchblox » Version: 6.3

cpe:2.3:a:searchblox:searchblox:6.3
Searchblox » Searchblox » Version: 6.4

cpe:2.3:a:searchblox:searchblox:6.4
Searchblox » Searchblox » Version: 7.0

cpe:2.3:a:searchblox:searchblox:7.0
Searchblox » Searchblox » Version: 7.1

cpe:2.3:a:searchblox:searchblox:7.1
Searchblox » Searchblox » Version: 7.2

cpe:2.3:a:searchblox:searchblox:7.2
Searchblox » Searchblox » Version: 7.3

cpe:2.3:a:searchblox:searchblox:7.3
Searchblox » Searchblox » Version: 7.4

cpe:2.3:a:searchblox:searchblox:7.4
Searchblox » Searchblox » Version: 7.5

cpe:2.3:a:searchblox:searchblox:7.5
Searchblox » Searchblox » Version: 8.1

cpe:2.3:a:searchblox:searchblox:8.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-0967

Products

Pricing

Contact Us