CyberSec.Space Logo
返回 CVE 浏览器

CVE-2010-0468

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.0390%
EPSS Percentile2.14th
Published2010年2月2日
Last Modified2026年4月29日

Vulnerability Description

Cross-site scripting (XSS) vulnerability in utilities/longproc.cfm in PaperThin CommonSpot Content Server allows remote attackers to inject arbitrary web script or HTML via the url parameter.

Affected Platforms (CPE)

📦
Paperthin

Commonspot Content Server

All versions

References & Advisories

🔗 http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0601.html
🔗 http://osvdb.org/62087
🔗 http://www.securityfocus.com/archive/1/509239/100/0/threaded
🔗 http://www.securityfocus.com/bid/37986
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/55955
🔗 http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0601.html
🔗 http://osvdb.org/62087
🔗 http://www.securityfocus.com/archive/1/509239/100/0/threaded

相关漏洞威胁

CVE-2005-45755.0

PaperThin CommonSpot Content Server 4.5 and earlier allow remote attackers to obtain sensitive information via an invalid errmsg p...

CVE-2005-45744.3

Cross-site scripting (XSS) vulnerability in loader.cfm in PaperThin CommonSpot Content Server 4.5 and earlier allows remote attack...

CVE-2010-308510.0

The network-play implementation in Mednafen before 0.8.D might allow remote servers to execute arbitrary code via unspecified vect...

CVE-2010-355310.0

Unspecified vulnerability in the Swing component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and...