CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-6397

An issue was discovered in FlightAirMap v1.0-beta.10. The vulnerability exists due to insufficient filtration of user-supplied data in multiple parameters passed to several *-sub-menu.php pages. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 46.4%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/96551
https://github.com/Ysurac/FlightAirMap/issues/275
http://www.securityfocus.com/bid/96551
https://github.com/Ysurac/FlightAirMap/issues/275

Products affected by CVE-2017-6397

Flightairmap » Flightairmap » Version: 1.0

cpe:2.3:a:flightairmap:flightairmap:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-6397

Products

Pricing

Contact Us