CVE-2017-18639
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Progress Sitefinity CMS before 10.1 allows XSS via /Pages Parameter : Page Title, /Content/News Parameter : News Title, /Content/List Parameter : List Title, /Content/Documents/LibraryDocuments/incident-request-attachments Parameter : Document Title, /Content/Images/LibraryImages/newsimages Parameter : Image Title, /Content/links Parameter : Link Title, /Content/links Parameter : Link Title, or /Content/Videos/LibraryVideos/default-video-library Parameter : Video Title.
Progress Sitefinity CMS versiones anteriores a 10.1 permite un ataque de tipo XSS mediante /Pages Parámetro : Page Title, /Content/News Parámetro : News Title, /Content/List Parámetro : List Title, /Content/Documents/LibraryDocuments/incident-request-attachments Parámetro : Document Title, /Content/Images/LibraryImages/newsimages Parámetro : Image Title, /Content/links Parámetro : Link Title, /Content/links Parámetro : Link Title, o /Content/Videos/LibraryVideos/default-video-library Parámetro : Video Title.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-11-06 CVE Reserved
- 2019-11-06 CVE Published
- 2024-08-05 CVE Updated
- 2024-08-05 First Exploit
- 2024-09-27 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/42792 | 2024-08-05 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Progress Search vendor "Progress" | Sitefinity Cms Search vendor "Progress" for product "Sitefinity Cms" | < 10.1 Search vendor "Progress" for product "Sitefinity Cms" and version " < 10.1" | - |
Affected
|