CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-7771

Cross-site scripting (XSS) vulnerability in the runtime engine in the Newphoria applican framework before 1.13.0 for Android and iOS allows remote attackers to inject arbitrary web script or HTML via a crafted SSID that is encountered by an applican application, a different vulnerability than CVE-2015-7772.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.7%

CVSS Severity

CVSS v2 Score 4.3

References

http://jvn.jp/en/jp/JVN71088919/995707/index.html
http://jvn.jp/en/jp/JVN71088919/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000178
http://jvn.jp/en/jp/JVN71088919/995707/index.html
http://jvn.jp/en/jp/JVN71088919/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000178

Products affected by CVE-2015-7771

Newphoria Corporation » Applican » Version: Any

cpe:2.3:a:newphoria_corporation:applican:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-7771

Products

Pricing

Contact Us