CVE-2015-10007

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in 82Flex WEIPDCRM and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. The attack may be launched remotely. The name of the patch is 43bad79392332fa39e31b95268e76fbda9fec3a4. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-217184. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Configurations

Configuration 1 (hide)

cpe:2.3:a:weipdcrm_project:weipdcrm:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:24

Type Values Removed Values Added
References () https://github.com/82Flex/WEIPDCRM/commit/43bad79392332fa39e31b95268e76fbda9fec3a4 - Patch, Third Party Advisory () https://github.com/82Flex/WEIPDCRM/commit/43bad79392332fa39e31b95268e76fbda9fec3a4 - Patch, Third Party Advisory
References () https://vuldb.com/?ctiid.217184 - Third Party Advisory () https://vuldb.com/?ctiid.217184 - Third Party Advisory
References () https://vuldb.com/?id.217184 - Third Party Advisory () https://vuldb.com/?id.217184 - Third Party Advisory
CVSS v2 : 4.0
v3 : 6.1
v2 : 4.0
v3 : 3.5

11 Apr 2024, 00:52

Type Values Removed Values Added
Summary
  • (es) ** NO SOPORTADO CUANDO SE ASIGNÓ ** Se encontró una vulnerabilidad en 82Flex WEIPDCRM y se clasificó como problemática. Una función desconocida es afectada por este problema. La manipulación conduce a cross-site scripting. El ataque puede lanzarse de forma remota. El nombre del parche es 43bad79392332fa39e31b95268e76fbda9fec3a4. Se recomienda aplicar un parche para solucionar este problema. El identificador de esta vulnerabilidad es VDB-217184. NOTA: Esta vulnerabilidad solo afecta a productos que ya no son compatibles con el fabricante.

29 Feb 2024, 01:16

Type Values Removed Values Added
New CVE

Information

Published : 2023-01-02 11:15

Updated : 2024-11-21 02:24


NVD link : CVE-2015-10007

Mitre link : CVE-2015-10007

CVE.ORG link : CVE-2015-10007


JSON object : View

Products Affected

weipdcrm_project

  • weipdcrm
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')