CVE-2013-3640

EUVD-2013-3573
Cross-site scripting (XSS) vulnerability in the Instant Web Publish function in FileMaker Pro before 12 and Pro Advanced before 12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
Affected Products (NVD)
VendorProductVersion
filemakerfilemaker_pro
𝑥
≤ 11.0.4.0
filemakerfilemaker_pro
8.0.1.0
filemakerfilemaker_pro
8.0.2.0
filemakerfilemaker_pro
8.0.3.0
filemakerfilemaker_pro
8.5.0.0
filemakerfilemaker_pro
8.5.1.0
filemakerfilemaker_pro
8.5.2.0
filemakerfilemaker_pro
9.0.0.0
filemakerfilemaker_pro
9.0.1.0
filemakerfilemaker_pro
9.0.2.0
filemakerfilemaker_pro
9.0.3.0
filemakerfilemaker_pro
10.0.0.0
filemakerfilemaker_pro
10.0.1.0
filemakerfilemaker_pro
10.0.3.0
filemakerfilemaker_pro
11.0.0.0
filemakerfilemaker_pro
11.0.1.0
filemakerfilemaker_pro
11.0.2.0
filemakerfilemaker_pro
11.0.3.0
filemakerfilemaker_pro_advanced
𝑥
≤ 11.0.4.0
filemakerfilemaker_pro_advanced
8.0.1.0
filemakerfilemaker_pro_advanced
8.0.2.0
filemakerfilemaker_pro_advanced
8.0.3.0
filemakerfilemaker_pro_advanced
8.5.0.0
filemakerfilemaker_pro_advanced
8.5.1.0
filemakerfilemaker_pro_advanced
8.5.2.0
filemakerfilemaker_pro_advanced
9.0.0.0
filemakerfilemaker_pro_advanced
9.0.1.0
filemakerfilemaker_pro_advanced
9.0.2.0
filemakerfilemaker_pro_advanced
9.0.3.0
filemakerfilemaker_pro_advanced
10.0.0.0
filemakerfilemaker_pro_advanced
10.0.1.0
filemakerfilemaker_pro_advanced
10.0.3.0
filemakerfilemaker_pro_advanced
11.0.0.0
filemakerfilemaker_pro_advanced
11.0.1.0
filemakerfilemaker_pro_advanced
11.0.2.0
filemakerfilemaker_pro_advanced
11.0.3.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://jvn.jp/en/jp/JVN53579095/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000049
http://jvn.jp/en/jp/JVN53579095/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000049