Cross-site scripting (XSS) vulnerability in the web interface for cumin in Red Hat Enterprise MRG Grid 2.4 allows remote attackers to inject arbitrary web script or HTML via the "Max allowance" field in the "Set limit" form.
References
Configurations
History
13 Feb 2023, 04:46
Type | Values Removed | Values Added |
---|---|---|
Summary | Cross-site scripting (XSS) vulnerability in the web interface for cumin in Red Hat Enterprise MRG Grid 2.4 allows remote attackers to inject arbitrary web script or HTML via the "Max allowance" field in the "Set limit" form. | |
References |
|
02 Feb 2023, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
CPE | cpe:2.3:o:redhat:enterprise_mrg:2.4:*:*:*:*:*:*:* | |
Summary | CVE-2013-4414 cumin: non-persistent XSS possible due to not escaping set limit form input |
Information
Published : 2013-12-23 22:55
Updated : 2023-12-10 11:16
NVD link : CVE-2013-4414
Mitre link : CVE-2013-4414
CVE.ORG link : CVE-2013-4414
JSON object : View
Products Affected
redhat
- enterprise_mrg
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')