CVE-2012-0790
Last modified
CVE-2012-0790 is a vulnerability of currently unknown severity. Cross-site scripting (XSS) vulnerability in smokeping_cgi in Smokeping 2.4.2, 2.6.6, and other versions before 2.6.7 allows remote attackers to inject arbitrary web script or HTML via the displaymode parameter.. EPSS estimates a 1.34% chance of exploitation in the next 30 days.
Description
Cross-site scripting (XSS) vulnerability in smokeping_cgi in Smokeping 2.4.2, 2.6.6, and other versions before 2.6.7 allows remote attackers to inject arbitrary web script or HTML via the displaymode parameter.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Oetiker | Smokeping | <= 2.6.6 | — |
| Oetiker | Smokeping | 0.99.5 | — |
| Oetiker | Smokeping | 0.99.6 | — |
| Oetiker | Smokeping | 0.99.7 | — |
| Oetiker | Smokeping | 0.99.8 | — |
| Oetiker | Smokeping | 0.99.9 | — |
| Oetiker | Smokeping | 0.99.10 | — |
| Oetiker | Smokeping | 0.99.11 | — |
| Oetiker | Smokeping | 0.99.12 | — |
| Oetiker | Smokeping | 0.99.13 | — |
| Oetiker | Smokeping | 0.99.14 | — |
| Oetiker | Smokeping | 0.99.15 | — |
| Oetiker | Smokeping | 0.99.16 | — |
| Oetiker | Smokeping | 0.99.17 | — |
| Oetiker | Smokeping | 0.99.18 | — |
| Oetiker | Smokeping | 1.0 | — |
| Oetiker | Smokeping | 1.1 | — |
| Oetiker | Smokeping | 1.2 | — |
| Oetiker | Smokeping | 1.3 | — |
| Oetiker | Smokeping | 1.4 | — |
| Oetiker | Smokeping | 1.5 | — |
| Oetiker | Smokeping | 1.6 | — |
| Oetiker | Smokeping | 1.7 | — |
| Oetiker | Smokeping | 1.8 | — |
| Oetiker | Smokeping | 1.9 | — |
| Oetiker | Smokeping | 1.10 | — |
| Oetiker | Smokeping | 1.11 | — |
| Oetiker | Smokeping | 1.12 | — |
| Oetiker | Smokeping | 1.13 | — |
| Oetiker | Smokeping | 1.14 | — |
| Oetiker | Smokeping | 1.15 | — |
| Oetiker | Smokeping | 1.16 | — |
| Oetiker | Smokeping | 1.17 | — |
| Oetiker | Smokeping | 1.18 | — |
| Oetiker | Smokeping | 1.19 | — |
| Oetiker | Smokeping | 1.20 | — |
| Oetiker | Smokeping | 1.21 | — |
| Oetiker | Smokeping | 1.22 | — |
| Oetiker | Smokeping | 1.23 | — |
| Oetiker | Smokeping | 1.24 | — |
| Oetiker | Smokeping | 1.25 | — |
| Oetiker | Smokeping | 1.26 | — |
| Oetiker | Smokeping | 1.27 | — |
| Oetiker | Smokeping | 1.28 | — |
| Oetiker | Smokeping | 1.29 | — |
| Oetiker | Smokeping | 1.30 | — |
| Oetiker | Smokeping | 1.31 | — |
| Oetiker | Smokeping | 1.34 | — |
| Oetiker | Smokeping | 1.36 | — |
| Oetiker | Smokeping | 1.37 | — |
Showing 50 of 90 affected configurations. See NVD for the full list.
References
- http://secunia.com/advisories/47678Vendor Advisory
- http://secunia.com/advisories/47678Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2012-0790?
How severe is CVE-2012-0790?
How do I fix CVE-2012-0790?
Are you affected by CVE-2012-0790?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST