CVE-2014-3884

{"id": "CVE-2014-3884", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2014-07-20T11:12:50.433", "references": [{"url": "http://jvn.jp/en/jp/JVN92737498/index.html", "tags": ["Vendor Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "http://jvndb.jvn.jp/jvndb/JVNDB-2014-000058", "tags": ["Vendor Advisory"], "source": "vultures@jpcert.or.jp"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in Usermin before 1.600 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2014-3924."}, {"lang": "es", "value": "Vulnerabilidad de XSS en Usermin anterior a 1.600 permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a trav\u00e9s de vectores no especificados. NOTA: esto podr\u00eda solarse con CVE-2014-3924."}], "lastModified": "2014-07-22T22:55:14.520", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:webmin:usermin:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "928167DF-5E72-4775-99C3-735068AFD05F", "versionEndIncluding": "1.590"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3046F962-BD9C-4E67-B2A8-9664440317A2"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A83F4A87-03D8-461B-B64A-81E171C88119"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E777B661-B6A5-4033-85BA-4B17A7FDF905"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "866EC157-2F84-4382-B081-AB7BF9D5B649"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.80:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F001647-DBB0-4B2A-AAF0-44DB043FB6DF"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.90:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A424E19-4946-4F66-8198-25380B073631"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.910:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "88950B52-9163-42CA-B693-E451C5EFF0AE"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.929:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50397E8C-F4B4-48EA-9305-AEA7D946A222"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.930:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A6C9C87-DDA3-4F9F-BC5F-D23BBF866DCF"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.940:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2F88DA6C-2018-4332-B8B9-2DE8C84AFF0C"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.950:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1EFE6FC5-4B9D-4270-8847-4A8CD016B861"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.960:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7AB5C8A8-3DC9-4DE7-9A69-E61F9BA481AE"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.970:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51C3396E-17DD-4096-B165-62C95D9EB349"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.980:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFDF2AE3-69D9-4BAC-895A-2E916A8247DC"}, {"criteria": "cpe:2.3:a:webmin:usermin:0.990:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2AF11C33-F62D-4486-920C-9528E519107B"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.000:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "973363CE-6A66-4BAF-8C11-D9B4911BF9A8"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.010:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "20B5FDD4-AD31-4985-97E2-179C0F6A6525"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.020:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C3551D4-9B28-4A29-9C30-D91C5D81F195"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.030:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8EEF1E3D-F633-4594-8E65-6AB0B941E95A"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.040:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D32B0E0C-B72B-4F3D-ABAC-BBA5A6E242ED"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.050:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66BDC46A-832F-4DE9-848E-898F99798D0E"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.051:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70AC0911-928C-4087-9EA8-BF0CB25BDD56"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.060:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35B34A95-A9D1-454D-AE3A-A68AE11A60AA"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.070:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDE9ABF8-331F-4268-8D2A-692BEC8F98DB"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.080:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8BD93C56-DE08-4CAC-A345-7C40C2CB0598"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.090:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F540CEF3-C21D-48E5-84AD-81CF7C62A948"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.100:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E554657F-DF48-41F9-A2F6-4C311C2AC99A"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.110:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA039A97-F28A-4216-B909-79EEBD8A6FC6"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.120:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "75B0C24B-7A62-4157-8CA8-5FA800F67C33"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.130:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F3652F8E-A163-4337-BAE0-210757FC421D"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.140:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87E84FE0-ACF0-43D9-ACC2-D662D5488B8C"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.150:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83419D0A-7C03-4F3E-9A95-25BA299D5961"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.160:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "77075C79-35BF-4841-8103-A372A67ECF45"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.170:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FDF692C-13F5-4E42-A5DF-2116080462F7"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.180:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D31D014-CB91-436C-A114-3C33D95E8D73"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.190:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3FBA2FDA-D70D-4850-A7E7-4A3C25B0C1C1"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.200:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A4AC88F-C70C-4184-8605-5A4BC95D83DC"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.210:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "72D4AAAF-A284-4FD9-B011-C822ED2DBAC9"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.220:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "490DBC72-DADD-491E-AC18-4D4C178ABECD"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.230:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A455B1DC-03F9-4338-9BD5-9184434F7AA4"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.240:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36C87163-EBC2-47DC-9865-9455CF066DB1"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.250:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDBED527-4698-44DC-8DFE-E107702C2D9D"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.260:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15CFE78E-22EB-47B1-9BD3-0A093645304A"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.270:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8CAB5C2-2F68-46F6-BF7D-12AEEB03BF66"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.280:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5E20E3B-AC6A-4059-9C49-9AF4FADDFF30"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.290:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B0B775C5-8A6F-4D08-9776-709029E918D6"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.300:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0235C6D-7EC8-4D89-8AE5-04B5628EDB74"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.310:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3686B12E-EE12-4FDF-98BE-C7D24ADD6C86"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.320:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0BED163-D9FF-45C9-90D5-1B167ADD423C"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.330:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "93488E00-C176-4C66-85D5-172F33E3DECD"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.340:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3DF6456E-E2F2-4777-BACC-9422B759F7F3"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.350:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "793F6997-0CCB-4074-97E3-E343D8508A48"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.360:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A957BD3B-6074-48CD-9A13-14125E0E5D07"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.370:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B6BB3FC-61B6-42DF-9229-99C16BA41720"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.380:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFCB8560-8CEF-4CC4-B7C7-275C86F1A03C"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.390:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9DFC35F7-DB28-49AB-ADFE-1068C751D49C"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.400:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4508D9EF-6917-40D9-9443-96AA96A924DE"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.410:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D741056-8345-4C59-BD22-546D01DE5F0A"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.420:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FCA449A-5DF9-418D-B6D9-F4A73DBC3C65"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.430:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E129FDD-A404-465E-9A04-00A2090F7EDD"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.440:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1841FFC1-25BA-4301-9515-381DAFBBCF6F"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.450:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5038DD1D-793B-4117-B59D-9E1B520A1C76"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.460:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "06E9E986-E4A7-4BFA-91D8-5E47D31F4EBD"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.470:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80B1D2D5-315B-4432-A9E6-41E9ABB329A2"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.480:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9810CFF4-6321-4016-9A10-A7C3D90CB000"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.490:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E26A472-555C-4081-8FBD-054761B4FE87"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.500:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "13519AED-F310-49BA-B0E2-F52F8233F6A6"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.510:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "125CF39D-EBBA-418B-A9DC-207E5A510A45"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.520:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE280A31-AC7F-4A48-8F71-F9C2AB8EC7EF"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.530:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FFABB6DD-E9C7-424C-8938-61A6617E2E27"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.540:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2DD1A23C-FB0C-4899-AC34-8BD0BC7E4038"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.550:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EE09F26-2068-4E74-8B9A-5E1A1F5EDD0F"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.560:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9DBB07F9-A3EB-485C-9116-1885F673BB7C"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.570:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4146A93-C7E4-4A38-8E38-E051D4D54BDF"}, {"criteria": "cpe:2.3:a:webmin:usermin:1.580:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EA40B6F-4D0C-44A6-854A-B4DBCCBFD8BA"}], "operator": "OR"}]}], "sourceIdentifier": "vultures@jpcert.or.jp"}