CVE-2012-4751 (GCVE-0-2012-4751)
Vulnerability from cvelistv5
Published
2012-10-22 16:00
Modified
2024-08-06 20:42
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.15, 3.0.x before 3.0.17, and 3.1.x before 3.1.11 allows remote attackers to inject arbitrary web script or HTML via an e-mail message body with whitespace before a javascript: URL in the SRC attribute of an element, as demonstrated by an IFRAME element.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T20:42:55.334Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "openSUSE-SU-2013:0145",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2013-01/msg00036.html"
},
{
"name": "56093",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/56093"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://znuny.com/assets/proof_of_concept_cve_2012-4751-znuny.py"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2012-03/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://znuny.com/en/#%21/advisory/ZSA-2012-03"
},
{
"name": "VU#603276",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/603276"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://packetstormsecurity.org/files/117504/OTRS-3.1-Cross-Site-Scripting.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2012-10-17T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.15, 3.0.x before 3.0.17, and 3.1.x before 3.1.11 allows remote attackers to inject arbitrary web script or HTML via an e-mail message body with whitespace before a javascript: URL in the SRC attribute of an element, as demonstrated by an IFRAME element."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2013-01-29T10:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "openSUSE-SU-2013:0145",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2013-01/msg00036.html"
},
{
"name": "56093",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/56093"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://znuny.com/assets/proof_of_concept_cve_2012-4751-znuny.py"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2012-03/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://znuny.com/en/#%21/advisory/ZSA-2012-03"
},
{
"name": "VU#603276",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/603276"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://packetstormsecurity.org/files/117504/OTRS-3.1-Cross-Site-Scripting.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2012-4751",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.15, 3.0.x before 3.0.17, and 3.1.x before 3.1.11 allows remote attackers to inject arbitrary web script or HTML via an e-mail message body with whitespace before a javascript: URL in the SRC attribute of an element, as demonstrated by an IFRAME element."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "openSUSE-SU-2013:0145",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2013-01/msg00036.html"
},
{
"name": "56093",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/56093"
},
{
"name": "http://znuny.com/assets/proof_of_concept_cve_2012-4751-znuny.py",
"refsource": "CONFIRM",
"url": "http://znuny.com/assets/proof_of_concept_cve_2012-4751-znuny.py"
},
{
"name": "http://www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2012-03/",
"refsource": "CONFIRM",
"url": "http://www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2012-03/"
},
{
"name": "http://znuny.com/en/#!/advisory/ZSA-2012-03",
"refsource": "CONFIRM",
"url": "http://znuny.com/en/#!/advisory/ZSA-2012-03"
},
{
"name": "VU#603276",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/603276"
},
{
"name": "http://packetstormsecurity.org/files/117504/OTRS-3.1-Cross-Site-Scripting.html",
"refsource": "MISC",
"url": "http://packetstormsecurity.org/files/117504/OTRS-3.1-Cross-Site-Scripting.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2012-4751",
"datePublished": "2012-10-22T16:00:00",
"dateReserved": "2012-09-04T00:00:00",
"dateUpdated": "2024-08-06T20:42:55.334Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2012-4751\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2012-10-22T16:55:01.680\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.15, 3.0.x before 3.0.17, and 3.1.x before 3.1.11 allows remote attackers to inject arbitrary web script or HTML via an e-mail message body with whitespace before a javascript: URL in the SRC attribute of an element, as demonstrated by an IFRAME element.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de ejecuci\u00f3n de secuencias de comandos en sitios cruzados (XSS) en Open Ticket Request System (OTRS) Help Desk v2.4.x antes de v2.4.15, v3.0.x antes v3.0.17, y v3.1.x antes de v3.1.11 permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s de un cuerpo de mensaje de correo electr\u00f3nico con un espacio en blanco antes de un javascript: URL en el atributo SRC de un elemento, como lo demuestra un elemento IFRAME.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B392055-8F04-4D66-9E34-18E08014E075\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"56956C8B-A529-4B2C-93B1-2E5B857E104B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"6EA6E59E-9A98-4DB8-8289-4C3D05ECCE6B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.0:beta4:*:*:*:*:*:*\",\"matchCriteriaId\":\"46E37D9A-107B-4FBA-8371-5E9C1B029CA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.0:beta5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF0E2F18-CD50-4A71-8291-76502AFAC579\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.0:beta6:*:*:*:*:*:*\",\"matchCriteriaId\":\"10F06ECD-C5FF-4912-9EDC-6C9A937CD844\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"724A9C40-AE96-4AD5-BEB2-6C496F4C361D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8AA5A554-016E-4CFB-A809-991B6902C3FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3821A8EF-ED18-49DD-BF52-DFDD982E35C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B41C77DB-BC99-4C50-BD86-FECB44ACF0A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C9D7CBCB-F4B8-4ACC-86C8-E45358F48697\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB4EAE42-96BD-4B25-BFCC-6CFBF08F339C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A07A35A7-55A5-4E78-98F8-38B1F3D4DA72\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73932047-8E00-4720-875A-7D414000F23F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9EB62C2-23EF-4B4F-9A68-DD1388E94E13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED6D3CC0-ED21-4BE5-989A-977FB267FED6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC028B45-B693-457B-8D2C-312C7363593A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CAE458E4-7394-48EB-8711-BC360036C082\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EBAA8183-513A-43E4-AAE2-5E654F95B4E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:2.4.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF68D197-5F0F-4E34-986F-A06B82EDE06F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FC9D47F-8774-47F5-AC8C-97CBA9879D09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"E501F8E9-3453-428A-AEDF-861A1FF09E3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7834A4F-255F-48E3-B363-452E8CEE1D2C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.0:beta4:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFAB601C-F7CC-49F7-8FC0-8D76360AE237\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.0:beta5:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB57DF5E-C8A1-454C-A9EE-6BF486E74E54\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.0:beta6:*:*:*:*:*:*\",\"matchCriteriaId\":\"47321F77-7019-46F9-B4E6-7490CD8F83C8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.0:beta7:*:*:*:*:*:*\",\"matchCriteriaId\":\"BC1AC1FB-87D5-457D-BFC4-4C6676950F20\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"480A5F3B-B1BC-4D66-9B86-424877BE8670\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46F47052-E465-4230-B59E-C7463C649A4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8694775A-9CE7-4E09-9C6E-9D3B26923513\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"01D3250B-2CE8-4C03-AB04-02A3D1EF72E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"666FB4D7-9917-4BAD-AD34-911FB315E1D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45326D85-EC87-4C3F-84FD-2A6FA4926F17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9DB3159B-EF44-4D18-A4E9-EE149F588BEA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F879541-066F-4C86-8844-B577EA8F2661\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C40A021-28B3-4358-951F-86F791A9655A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D6605C7-A589-43BD-BB4A-1917D964569B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"388F9AA8-CFF2-4742-B594-A5462DA424FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5587B6D5-9219-4429-BA50-723CDA760377\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F2914F4-C45B-4CBA-8EF4-DA1FEC309895\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61B492D3-5659-4F8B-A0B9-3F5937203BED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5258544-BF7A-4C64-88A6-C95E4482FA70\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"706EACAF-7E79-4809-8206-818145101E48\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55EB05A1-9965-40D2-BABF-A666BE857166\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"777A992E-1D05-493F-8E2F-15AB3F2A4562\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"828189F1-EF8B-485C-946F-C12CCEE4E27D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D8020EA-A636-4C9B-A080-3EF092DF583B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C3C84E0-F4C1-4BDC-B7C1-519C4499FEC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51877344-2358-400D-89D5-6273992571FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FC3B407-4C93-422F-800B-E747068826E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52A10F00-2869-4DDE-9548-B374EBC14C12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6BF985A8-DB88-47DA-9F9A-B63F727D8239\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A1D5FC4-BDFC-4D46-B722-8BFAC91C819F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:otrs:otrs:3.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5189FACC-454A-4AFD-A08C-0F4F7158EDEB\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-updates/2013-01/msg00036.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://packetstormsecurity.org/files/117504/OTRS-3.1-Cross-Site-Scripting.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.kb.cert.org/vuls/id/603276\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2012-03/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/56093\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://znuny.com/assets/proof_of_concept_cve_2012-4751-znuny.py\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://znuny.com/en/#%21/advisory/ZSA-2012-03\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2013-01/msg00036.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://packetstormsecurity.org/files/117504/OTRS-3.1-Cross-Site-Scripting.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/603276\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2012-03/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/56093\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://znuny.com/assets/proof_of_concept_cve_2012-4751-znuny.py\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://znuny.com/en/#%21/advisory/ZSA-2012-03\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…