CVE-2010-3607:real_estate_portal: Cross-site scripting (XSS) vulnerability in AGENTS/...

VRDA Feed by

Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis

[ about VRDA Feed | JPCERT/CC ]

Vulnerability Analysis Result (Revision No : 1)

[ Download XML ]

CVE-2010-3607

real_estate_portal: Cross-site scripting (XSS) vulnerability in AGENTS/...

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3607

Original

Cross-site scripting (XSS) vulnerability in AGENTS/index.php in NetArt MEDIA Real Estate Portal 2.0 allows remote authenticated users to inject arbitrary web script or HTML via the id parameter.

Translation (Show)

About This Analysis Information

Analysis Information Provider:

NIST NVD

First Published:

2010-09-24

Source Information Category:

Advisory, Alert

Last Updated:

2010-09-27

Affected Product Tags

cpe:/a:netartmedia:real_estate_portal:2.0

Vulnerability Analysis Results

[Access Vector] ^[?]

Undefined^[?]

Local^[?]

Adjacent Network^[?]

Network^[?]

[Access Complexit] ^[?]

Undefined^[?]

High^[?]

Medium^[?]

Low^[?]

[Authentication] ^[?]

Undefined^[?]

Multiple^[?]

Single^[?]

None^[?]

[Confidentiality Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

[Integrity Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

[Availability Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

Alternatives

References

BID 43266

MISC http://pridels-team.blogspot.com/2010/09/netartmedia-real-estate-portal-v20-xss.html

OSVDB 68061

SECUNIA 41377

Vulnerability Type Cross-Site Scripting (XSS) (CWE-79)

XF realestateportal-index-xss(61866)