Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 16/05/2017 Updated: 13/08/2017

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3

VMScore: 355

Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

Subscribe to Enterprise Asset Management

INFOR EAM V11.0 Build 201410 has XSS via comment fields.

Vulnerable Product	Search on Vulmon	Subscribe to Product
infor enterprise asset management 11.0

Stored XSS in INFOR EAM V110 Build 201410 via comment fields ------------------- Assigned CVE: CVE-2017-7953 Reproduction steps: ------------------- 1 Log in with your EAM account 2 Go to the jobs page 3 Click on a record and open its page 4 Go to "Comments" tab 4 Click the add new comment button 5 Insert a comment containing javascript cod ...

INFOR EAM version 110 build 201410 suffers from a stored cross site scripting vulnerability ...

CWE-79 http://seclists.org/fulldisclosure/2017/May/54 https://www.exploit-db.com/exploits/42029/https://nvd.nist.gov https://www.exploit-db.com/exploits/42029/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-7953

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect