Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Informations
Name CVE-2015-5667 First vendor Publication 2015-10-31
Vendor Cve Last vendor Modification 2016-12-07

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:H/Au:N/C:N/I:P/A:N)
Cvss Base Score 2.6 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity High
Cvss Expoit Score 4.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Cross-site scripting (XSS) vulnerability in the HTML-Scrubber module before 0.15 for Perl, when the comment feature is enabled, allows remote attackers to inject arbitrary web script or HTML via a crafted comment.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5667

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)

Nessus® Vulnerability Scanner

Date Description
2016-03-04 Name : The remote Fedora host is missing a security update.
File : fedora_2015-84a95e39d4.nasl - Type : ACT_GATHER_INFO
2016-03-04 Name : The remote Fedora host is missing a security update.
File : fedora_2015-95f5ff8d44.nasl - Type : ACT_GATHER_INFO
2016-03-04 Name : The remote Fedora host is missing a security update.
File : fedora_2015-fed35dffd7.nasl - Type : ACT_GATHER_INFO
2015-12-15 Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2015-629.nasl - Type : ACT_GATHER_INFO
2015-11-11 Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_2f7f4db2881911e5ab94002590263bf5.nasl - Type : ACT_GATHER_INFO
2015-11-04 Name : The remote Debian host is missing a security update.
File : debian_DLA-339.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
CONFIRM https://metacpan.org/release/HTML-Scrubber
FEDORA http://lists.fedoraproject.org/pipermail/package-announce/2015-November/17293...
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/17298...
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/17299...
JVN http://jvn.jp/en/jp/JVN53973084/index.html
JVNDB http://jvndb.jvn.jp/jvndb/JVNDB-2015-000171

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
Date Informations
2021-04-22 01:49:56
  • Multiple Updates
2020-05-23 01:56:26
  • Multiple Updates
2020-05-23 00:46:09
  • Multiple Updates
2016-12-07 21:24:43
  • Multiple Updates
2016-03-05 13:26:43
  • Multiple Updates
2015-12-16 13:26:27
  • Multiple Updates
2015-11-12 13:24:42
  • Multiple Updates
2015-11-05 13:23:53
  • Multiple Updates
2015-11-02 21:23:31
  • Multiple Updates
2015-10-31 09:22:41
  • First insertion