Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.4
CVSSv3

CVE-2015-5399

Published: 26/08/2016 Updated: 29/08/2016
CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8
CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3
VMScore: 355
Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in PHPVibe prior to 4.21 allows remote authenticated users to inject arbitrary web script or HTML via a comment.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

phpvibe phpvibe

Exploits

Exploit DB: phpVibe < 4.20 - Persistent Cross-Site Scripting
# phpVibe &lt; 420 Stored XSS # Vendor Homepage: wwwphpvibecom # Affected Versions: prior to 420 # Discovered by Filippos Mastrogiannis # Twitter: @filipposmastro # LinkedIn: wwwlinkedincom/pub/filippos-mastrogiannis/68/132/177 -- Description -- This stored XSS vulnerability allows any logged in user to inject malicious cod ...

References

CWE-79https://www.exploit-db.com/exploits/37659https://packetstormsecurity.com/files/132715/phpVibe-Stored-Cross-Site-Scripting.htmlhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/37659/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4956validationCVE-2024-35221remote attackersCVE-2023-30309CVE-2024-36112CVE-2024-23109CVE-2023-43850stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook