HomePentest-Tools.com Logo

ClipBucket Unspecified Cross Site Scripting Vulnerability CVE-2016-4848

Severity
CVSSv3 Score
6.1
Vulnerability description

ClipBucket is prone to an unspecified cross site scripting vulnerability.

Risk description

The flaw is due to an insufficient validation of user supplied input via unspecified vectors. Successful exploitation will allow remote attackers to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.

Recommendation

Upgrade to clipBucket version 2.8.1 RC2 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Sep 2, 2016
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available