CVE-2013-6163

EUVD-2013-5992
Multiple cross-site scripting (XSS) vulnerabilities in ProjeQtOr (formerly Project'Or RIA) before 4.0.0 allow remote attackers to inject arbitrary web script or HTML via the (1) type parameter to view/parameter.php, (2) p1value parameter to view/main.php, or (3) objectClass parameter to view/objectDetail.php.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 70%
Affected Products (NVD)
VendorProductVersion
projeqtorprojeqtor
𝑥
≤ 3.4.4
projeqtorprojeqtor
0.1.0
projeqtorprojeqtor
0.2.0
projeqtorprojeqtor
0.3.0
projeqtorprojeqtor
0.4.0
projeqtorprojeqtor
0.5.0
projeqtorprojeqtor
0.6.0
projeqtorprojeqtor
0.6.1
projeqtorprojeqtor
0.7.0
projeqtorprojeqtor
0.8.0
projeqtorprojeqtor
0.8.1
projeqtorprojeqtor
0.9.0
projeqtorprojeqtor
1.0.0
projeqtorprojeqtor
1.0.1
projeqtorprojeqtor
1.1.0
projeqtorprojeqtor
1.2.0
projeqtorprojeqtor
1.2.1
projeqtorprojeqtor
1.3.0
projeqtorprojeqtor
1.3.1
projeqtorprojeqtor
1.4.0
projeqtorprojeqtor
1.4.1
projeqtorprojeqtor
1.4.2
projeqtorprojeqtor
1.5.0
projeqtorprojeqtor
1.5.1
projeqtorprojeqtor
1.5.2
projeqtorprojeqtor
1.5.3
projeqtorprojeqtor
1.5.4
projeqtorprojeqtor
1.5.5
projeqtorprojeqtor
1.6.0
projeqtorprojeqtor
1.6.1
projeqtorprojeqtor
1.6.2
projeqtorprojeqtor
1.7.0
projeqtorprojeqtor
1.7.1
projeqtorprojeqtor
1.7.2
projeqtorprojeqtor
1.8.0
projeqtorprojeqtor
1.8.1
projeqtorprojeqtor
1.8.2
projeqtorprojeqtor
1.8.3
projeqtorprojeqtor
1.9.0
projeqtorprojeqtor
1.9.1
projeqtorprojeqtor
2.0.0
projeqtorprojeqtor
2.0.1
projeqtorprojeqtor
2.1.0
projeqtorprojeqtor
2.1.1
projeqtorprojeqtor
2.2.0
projeqtorprojeqtor
2.2.1
projeqtorprojeqtor
2.2.2
projeqtorprojeqtor
2.2.3
projeqtorprojeqtor
2.3.0
projeqtorprojeqtor
2.4.0
projeqtorprojeqtor
2.4.1
projeqtorprojeqtor
2.4.2
projeqtorprojeqtor
2.4.3
projeqtorprojeqtor
2.5.0
projeqtorprojeqtor
2.5.1
projeqtorprojeqtor
2.5.2
projeqtorprojeqtor
2.5.3
projeqtorprojeqtor
2.6.0
projeqtorprojeqtor
2.6.1
projeqtorprojeqtor
2.6.2
projeqtorprojeqtor
2.6.3
projeqtorprojeqtor
3.0.0
projeqtorprojeqtor
3.0.1
projeqtorprojeqtor
3.0.2
projeqtorprojeqtor
3.1.0
projeqtorprojeqtor
3.1.1
projeqtorprojeqtor
3.1.2
projeqtorprojeqtor
3.1.3
projeqtorprojeqtor
3.1.4
projeqtorprojeqtor
3.2.0
projeqtorprojeqtor
3.2.1
projeqtorprojeqtor
3.2.2
projeqtorprojeqtor
3.3.0
projeqtorprojeqtor
3.3.1
projeqtorprojeqtor
3.3.2
projeqtorprojeqtor
3.4.0
projeqtorprojeqtor
3.4.1
projeqtorprojeqtor
3.4.2
projeqtorprojeqtor
3.4.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2013-11/0021.html
http://archives.neohapsis.com/archives/fulldisclosure/2013-11/0032.html
http://osvdb.org/99366
http://osvdb.org/99368
http://osvdb.org/99369
http://packetstormsecurity.com/files/123916
http://projectorria.org/index.php/menu_download_en/menu_history_en
http://secunia.com/advisories/55451
http://www.securityfocus.com/bid/63539
https://exchange.xforce.ibmcloud.com/vulnerabilities/88583
http://archives.neohapsis.com/archives/bugtraq/2013-11/0021.html
http://archives.neohapsis.com/archives/fulldisclosure/2013-11/0032.html
http://osvdb.org/99366
http://osvdb.org/99368
http://osvdb.org/99369
http://packetstormsecurity.com/files/123916
http://projectorria.org/index.php/menu_download_en/menu_history_en
http://secunia.com/advisories/55451
http://www.securityfocus.com/bid/63539
https://exchange.xforce.ibmcloud.com/vulnerabilities/88583