4.3 - CVE-2012-1600

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Informations
Name	CVE-2012-1600	First vendor Publication	2014-05-13
Vendor	Cve	Last vendor Modification	2023-02-13

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Cvss Base Score	4.3	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin before 5.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) type of a function.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1600

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)

CPE : Common Platform Enumeration

Type	Description	Count
Application	Phppgadmin Project Phppgadmin cpe:2.3:a:phppgadmin_project:phppgadmin:5.0.2:::::::* cpe:2.3:a:phppgadmin_project:phppgadmin:5.0.1:::::::* cpe:2.3:a:phppgadmin_project:phppgadmin:5.0:::::::*	3
Os	Opensuse cpe:2.3:o:opensuse:opensuse:12.1:::::::* cpe:2.3:o:opensuse:opensuse:11.4:::::::*	2

Nessus® Vulnerability Scanner

Date	Description
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-219.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source	Url
BID	http://www.securityfocus.com/bid/52761
CONFIRM	https://bugzilla.redhat.com/show_bug.cgi?id=808439 https://github.com/phppgadmin/phppgadmin/commit/74174ad639664b52cc1609ede0af8... https://github.com/phppgadmin/phppgadmin/commit/e92a003624609a445c4cf57c9c3d1...
MISC	http://sourceforge.net/p/phppgadmin/mailman/message/28783470/ http://www.postgresql.org/message-id/4F6B447C.6080204%40dalibo.com
MLIST	http://www.openwall.com/lists/oss-security/2012/03/28/11 http://www.openwall.com/lists/oss-security/2012/03/29/6 http://www.openwall.com/lists/oss-security/2012/03/30/7
OSVDB	http://www.osvdb.org/80870
SECUNIA	http://secunia.com/advisories/48574
SUSE	http://lists.opensuse.org/opensuse-updates/2012-04/msg00033.html
XF	https://exchange.xforce.ibmcloud.com/vulnerabilities/74440

Alert History

If you want to see full details history, please login or register.

Date	Informations
2023-02-13 09:28:12	Multiple Updates
2021-05-04 12:19:31	Multiple Updates
2021-04-22 01:23:13	Multiple Updates
2020-05-23 01:48:25	Multiple Updates
2020-05-23 00:33:14	Multiple Updates
2018-10-31 00:20:17	Multiple Updates
2018-01-26 12:04:02	Multiple Updates
2018-01-04 09:22:00	Multiple Updates
2016-06-28 19:04:31	Multiple Updates
2016-04-26 21:40:35	Multiple Updates
2014-06-14 13:32:38	Multiple Updates
2014-05-15 00:22:40	Multiple Updates
2014-05-14 09:22:51	First insertion

Type	Count
CWE ID(s)	1
CPE ID(s)	5
Sources(s)	13
Nessus® Exploit(s)	1

4.3 - CVE-2012-1600

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU