CVE-2012-2903
Published May 21, 2012
Last updated 7 years ago
Overview
- Description
- Multiple cross-site scripting (XSS) vulnerabilities in PHP Address Book 7.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO to group.php, or the (2) target_language or (3) target_flag parameter to translate.php.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "97A3FA42-FB91-47BA-A280-51772E3D73EB",
"versionEndIncluding": "6.1.1"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C9FF0E35-2CE9-4913-9972-06A1CC9ED7F0"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0638A8E0-D5AE-4CE8-A231-189AB5C37760"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5F0ECE8F-2CA0-4A96-829F-CC44E6A23F7D"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "705B32EE-8B6F-4E52-BDDD-3E29C8C12DA6"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:2.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B552C348-EA14-441B-965D-BFBCF3C659B8"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8B1CC353-0194-4223-9AE9-9F1A0366CA56"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "957DEF49-95C3-47A3-87CC-F96244EB02CC"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:2.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8AE4907C-EEAE-467B-B4D8-815D74BC967C"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:2.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F6DA8E52-EBC4-467A-9828-7C4FF5DB2F94"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FA81584D-0146-4671-8AA4-826B0679E814"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BB40E9BC-AA89-4BD1-9D0F-B4683594D41E"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "713BAF0E-F052-4EBD-B96F-617BDF502C2F"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "00B8BE5A-0515-47CB-B9CA-99DD1084931E"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BA2650C2-DC43-4200-A549-72FDD5D0B2C9"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6240EDAA-3A91-4C60-84EA-A707DB15A704"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AEE9BCD9-2FAB-4C5E-84AF-06A018CBCECA"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9D14A98C-11E4-4BDC-ADCC-92AFFEEF7D36"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5934027A-D791-40B2-A6C7-CC48ACC93902"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "55D4AE6B-BF07-42F9-855C-C515DF53DE38"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7E693058-2317-45AA-9EDA-E172481D0F68"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "90AEA533-75C0-405B-9B9C-5112EF915046"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C15CD197-7DAD-4167-A09C-8CC624D2C193"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "32346086-559E-4F3A-89CD-80E2008ADD9A"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5693BA39-D016-4638-B02B-D850DDE70CAE"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "911C62F2-1A01-478D-84C9-025B355D2DF7"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A745F5E-80AC-4684-BD75-7971AB59C463"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3AE0883E-2BE6-4DF6-BD79-FF06252C5999"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B8CE468-BFB1-479F-80A5-CBE64AFBB450"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3495E90E-B6A8-40D3-BAA9-300000C96E78"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "31F79981-2AD9-48B2-93AB-CFC4DD2EA509"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "795AB655-C201-43B1-8EAE-3E6DBD4F46BE"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.2.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BF7637C9-BA44-4FB3-868E-7DB92820443F"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "70CC57C1-10E2-4D07-814C-C4AA12F261FF"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E6AF78B-7394-4DDB-BA29-151776501A37"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "86397AC1-216C-4373-934C-6AA4F21B9646"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A9840DDB-EE33-4D1A-8492-5F3AFF2CD049"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B6E47917-CFF0-4B09-ACE5-DFC58E05E5CC"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CBAE35A0-C598-485A-A096-2854A05642F6"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "051D749E-2F22-4297-ADF0-0706A80690DA"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "09C820E7-02FC-4A92-A4C4-0E2EF0AE0AE3"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8F213E2B-A69D-4774-9C28-3F658716DABD"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0C1245A-52B7-47A7-A821-028488F08FAA"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "52BA93B1-0EA4-40F9-ABAC-22A77ED53575"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5578C089-84AE-49C7-887A-4ECAF40C036D"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3E6E13B5-F795-4ACB-91B6-E9BE2CC07329"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "67DBC8D6-430E-4052-AE60-28370A0FB22D"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F6FAE015-21BC-4BD3-95DF-BA32A2A0E014"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F041863D-17BB-4927-AEE4-02D00FC27B6E"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6BB546BC-9A90-4E1C-A3CC-270FBE1C28BF"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.3.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DECE508D-0E94-4650-854B-BE69ADE25CCE"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6DD5C2FE-8992-446B-BAD9-60AF7C2FB657"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B28FEED4-E6AE-4B54-AC39-88633509D33D"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "379EE48E-8F64-494A-887F-47F45F7756DC"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.4.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F906499A-9AE1-49B8-A96D-0E4866ADC877"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.4.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9805B1F8-D618-4BE0-8B9F-B837332624B7"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.4.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6DDAFB40-DCE2-4B22-A9B4-8E74C046E87F"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.4.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48A3137A-3FA2-4135-A3B9-E6432FE4EE03"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.4.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "697E4786-1656-481E-AEDF-DFFB838A7ABB"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.4.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E9E243D-EE1F-4476-B1E8-EE56EAC3691E"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:3.4.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AFC7295A-8B07-4DB7-BA31-CC8924C2F136"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B55DB92-22A0-461C-8C82-2F1A3C5D855E"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:4.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "42B80912-2590-41E4-9F02-94F830E5829C"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:4.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AA4A53AB-E2BA-45DC-9C33-C9F88AFE9405"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:4.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9B57B554-7966-4861-8205-263F0B95B4B5"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:4.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1AEE7B03-7BDA-4704-8B24-965288050FF1"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "11CA518D-0304-445E-A72B-30EC351FBA08"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.0:beta:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6AE10944-ED44-4726-94C1-54A5D1AE1235"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9458A499-0B83-4656-8154-401062F3CBAF"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D7150ABE-D8DC-45AD-A55F-9ACDB7695F27"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C8F53A7-5ED8-4C67-A683-4609BA3E7101"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E9F0241F-D7CF-4990-9FF0-180D41EF7E4B"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5508935A-83E2-4F30-9CFB-10FBA170584D"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "72AF4463-AC87-4B6E-AEFE-B29E7BA0939D"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.4.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2956FC93-485F-4D93-BAE0-D8D969F8652E"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.4.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1561EF56-36C2-4214-95EF-5A7E6C466A44"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.4.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3901C534-8162-4B69-A698-1C74C8953D0B"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.4.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "23EF6361-1C64-4575-9824-874E4E73BAC8"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.4.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "84FB1978-00E7-4E0A-8D14-9ECDD2B68E34"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.4.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DD81D7CD-754A-4B16-B02D-F7BFF4717EED"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C306D7B1-7005-456B-929B-59609A5D4AB4"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FE982167-CE2B-47EA-B479-FF616972967B"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A3AB8F31-0E68-43FE-8001-B1C7E0D639BF"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.7.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "631D327F-C853-4E14-BA57-00D25BD21931"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.7.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B7F9260-68C7-4882-8471-8104D4669234"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.7.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DA1C7F75-098F-4B5F-90FB-0DB6397C6563"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.7.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E2E400BB-CC69-4545-9C50-30AC0644356C"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.7.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "655454C1-7AF4-4B30-897C-63AB394C7FE1"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:5.8.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9D4DD7AA-3CBC-402F-AAFD-3D865591A2B7"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "23B3D29F-31C5-442B-B22D-19506EEA8DA9"
},
{
"criteria": "cpe:2.3:a:chatelao:php_address_book:6.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4DAB49E0-5D06-43BD-8258-4FD913DA9C88"
}
],
"operator": "OR"
}
]
}
]