CVE-2013-3936

Multiple cross-site scripting (XSS) vulnerabilities in Opsview before 4.4.1 and Opsview Core before 20130522 allow remote attackers to inject arbitrary web script or HTML.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:opsview:opsview:*:*:*:*:*:*:*:*
cpe:2.3:a:opsview:opsview_core:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:54

Type Values Removed Values Added
References () http://docs.opsview.com/doku.php?id=opsview-core:changes#opsview_core_20130822 - Vendor Advisory () http://docs.opsview.com/doku.php?id=opsview-core:changes#opsview_core_20130822 - Vendor Advisory
References () http://docs.opsview.com/doku.php?id=opsview4.4:changes#fixes - Broken Link, Vendor Advisory () http://docs.opsview.com/doku.php?id=opsview4.4:changes#fixes - Broken Link, Vendor Advisory

Information

Published : 2020-01-02 15:15

Updated : 2024-11-21 01:54


NVD link : CVE-2013-3936

Mitre link : CVE-2013-3936

CVE.ORG link : CVE-2013-3936


JSON object : View

Products Affected

opsview

  • opsview
  • opsview_core
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')