Vulnerability Details CVE-2015-2976
Multiple cross-site scripting (XSS) vulnerabilities in Research Artisan Lite before 1.18 allow remote attackers to inject arbitrary web script or HTML via (1) a crafted HTML document or (2) a crafted URL that is mishandled during access-log analysis.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.7%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2015-2976
-
cpe:2.3:a:research-artisan:research_artisan_lite:1.10
-
cpe:2.3:a:research-artisan:research_artisan_lite:1.11
-
cpe:2.3:a:research-artisan:research_artisan_lite:1.12
-
cpe:2.3:a:research-artisan:research_artisan_lite:1.13
-
cpe:2.3:a:research-artisan:research_artisan_lite:1.14
-
cpe:2.3:a:research-artisan:research_artisan_lite:1.15
-
cpe:2.3:a:research-artisan:research_artisan_lite:1.16
-
cpe:2.3:a:research-artisan:research_artisan_lite:1.17