CVE-2012-6644
Summary
| CVE | CVE-2012-6644 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2014-04-08 14:22:00 UTC |
| Updated | 2017-08-29 01:32:00 UTC |
| Description | Multiple cross-site scripting (XSS) vulnerabilities in ClipBucket 2.6 allow remote attackers to inject arbitrary web script or HTML via the (1) cat parameter to channels.php, (2) collections.php, (3) groups.php, or (4) videos.php; (5) query parameter to search_result.php; or (6) type parameter to view_collection.php or (7) view_item.php. |
Risk And Classification
Problem Types: CWE-79
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Clip-bucket | Clipbucket | 2.6 | All | All | All |
| Application | Clip-bucket | Clipbucket | 2.6 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Malformed Request | BID | www.securityfocus.com | |
| 78193 | OSVDB | osvdb.org | |
| 78194 | OSVDB | osvdb.org | |
| 78196 | OSVDB | osvdb.org | |
| Security Advisory SA47474 - ClipBucket Multiple Vulnerabilities - Secunia | SECUNIA | secunia.com | |
| 78198 | OSVDB | osvdb.org | |
| 78195 | OSVDB | osvdb.org | |
| 78199 | OSVDB | osvdb.org | |
| Clip Bucket 2.6 Cross Site Scripting / SQL Injection ≈ Packet Storm | MISC | packetstormsecurity.org | |
| Clip Bucket 2.6 Multiple Vulnerabilities | EXPLOIT-DB | www.exploit-db.com | |
| 78199 | OSVDB | osvdb.org | |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| 78197 | OSVDB | osvdb.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.