CyberSec.Space Logo
Back to CVE Browser

CVE-2015-2043

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.1070%
EPSS Percentile17.33th
PublishedFeb 25, 2015
Last ModifiedMay 6, 2026

Vulnerability Description

Multiple cross-site scripting (XSS) vulnerabilities in Visualware MyConnection Server 8.2b allow remote attackers to inject arbitrary web script or HTML via the (1) bt, (2) variable, or (3) et parameter to myspeed/db/historyitem.

Affected Platforms (CPE)

📦
Visualware

Myconnection Server

= 8.2b

References & Advisories

🔗 http://packetstormsecurity.com/files/130490/MyConnection-Server-8.2b-Cross-Site-Scripting.html
🔗 http://packetstormsecurity.com/files/130490/MyConnection-Server-8.2b-Cross-Site-Scripting.html

Related Vulnerabilities

CVE-2021-271989.8

An issue was discovered in Visualware MyConnection Server before v11.1a. Unauthenticated Remote Code Execution can occur via Arbit...

CVE-2021-275097.5

In Visualware MyConnection Server before 11.0b build 5382, each published report is not associated with its own access code.

CVE-2014-51134.3

Multiple cross-site scripting (XSS) vulnerabilities in test.php in Visualware MyConnection Server 9.7i allow remote attackers to i...

CVE-2015-844110.0

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and b...