{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2011-12-19T00:00:00.000Z","descriptions":[{"lang":"en","value":"Multiple cross-site scripting (XSS) vulnerabilities in Wuzly 2.0 allow remote attackers to inject arbitrary web script or HTML via the Referer header to (1) admin/login.php and (2) admin/404.php; the (3) q parameter to search.php; the (4) theme_name parameter to theme_settings.php, (5) extension_name parameter to extension_settings.php, (6) q parameter to search.php, (7) type parameter to comments.php, sort parameter to (8) pages.php and (9) posts.php, and the (10) type and (11) q parameter to media.php in admin/; the sidebar parameter to (12) add_widget.php and (13) widgets.php, id parameter to (14) category_delete.php, (15) comment.php, (16) page_delete.php, and (17) post_delete.php, (18) type parameter to media.php, and (19) id and (20) sidebar parameter to widget_delete.php in mobile/; and the (21) name, (22) email, (23) website, and (24) comment parameters to index.php; and the (25) username parameter to admin/login.php."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2017-08-28T12:57:01.000Z","orgId":"44d08088-2bea-4760-83a6-1e9be26b15ab","shortName":"flexera"},"references":[{"name":"77929","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77929"},{"name":"77938","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77938"},{"tags":["x_refsource_MISC"],"url":"http://secunia.com/secunia_research/2011-86/"},{"name":"77914","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77914"},{"name":"77931","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77931"},{"name":"77923","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77923"},{"name":"77928","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77928"},{"name":"77925","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77925"},{"tags":["x_refsource_MISC"],"url":"http://secunia.com/secunia_research/2011-84/"},{"name":"77933","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77933"},{"name":"77921","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77921"},{"name":"46163","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/46163"},{"name":"77922","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77922"},{"name":"77927","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77927"},{"name":"77924","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77924"},{"name":"wuzly-referer-header-xss(71906)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/71906"},{"name":"77935","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77935"},{"name":"77936","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77936"},{"name":"77934","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77934"},{"name":"wuzly-login-xss(71902)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/71902"},{"name":"77930","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77930"},{"name":"77932","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77932"},{"name":"77926","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77926"},{"name":"77937","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77937"},{"name":"77920","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/77920"},{"name":"wuzly-multiple-xss(71899)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/71899"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"PSIRT-CNA@flexerasoftware.com","ID":"CVE-2011-3835","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Multiple cross-site scripting (XSS) vulnerabilities in Wuzly 2.0 allow remote attackers to inject arbitrary web script or HTML via the Referer header to (1) admin/login.php and (2) admin/404.php; the (3) q parameter to search.php; the (4) theme_name parameter to theme_settings.php, (5) extension_name parameter to extension_settings.php, (6) q parameter to search.php, (7) type parameter to comments.php, sort parameter to (8) pages.php and (9) posts.php, and the (10) type and (11) q parameter to media.php in admin/; the sidebar parameter to (12) add_widget.php and (13) widgets.php, id parameter to (14) category_delete.php, (15) comment.php, (16) page_delete.php, and (17) post_delete.php, (18) type parameter to media.php, and (19) id and (20) sidebar parameter to widget_delete.php in mobile/; and the (21) name, (22) email, (23) website, and (24) comment parameters to index.php; and the (25) username parameter to admin/login.php."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"77929","refsource":"OSVDB","url":"http://osvdb.org/77929"},{"name":"77938","refsource":"OSVDB","url":"http://osvdb.org/77938"},{"name":"http://secunia.com/secunia_research/2011-86/","refsource":"MISC","url":"http://secunia.com/secunia_research/2011-86/"},{"name":"77914","refsource":"OSVDB","url":"http://osvdb.org/77914"},{"name":"77931","refsource":"OSVDB","url":"http://osvdb.org/77931"},{"name":"77923","refsource":"OSVDB","url":"http://osvdb.org/77923"},{"name":"77928","refsource":"OSVDB","url":"http://osvdb.org/77928"},{"name":"77925","refsource":"OSVDB","url":"http://osvdb.org/77925"},{"name":"http://secunia.com/secunia_research/2011-84/","refsource":"MISC","url":"http://secunia.com/secunia_research/2011-84/"},{"name":"77933","refsource":"OSVDB","url":"http://osvdb.org/77933"},{"name":"77921","refsource":"OSVDB","url":"http://osvdb.org/77921"},{"name":"46163","refsource":"SECUNIA","url":"http://secunia.com/advisories/46163"},{"name":"77922","refsource":"OSVDB","url":"http://osvdb.org/77922"},{"name":"77927","refsource":"OSVDB","url":"http://osvdb.org/77927"},{"name":"77924","refsource":"OSVDB","url":"http://osvdb.org/77924"},{"name":"wuzly-referer-header-xss(71906)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/71906"},{"name":"77935","refsource":"OSVDB","url":"http://osvdb.org/77935"},{"name":"77936","refsource":"OSVDB","url":"http://osvdb.org/77936"},{"name":"77934","refsource":"OSVDB","url":"http://osvdb.org/77934"},{"name":"wuzly-login-xss(71902)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/71902"},{"name":"77930","refsource":"OSVDB","url":"http://osvdb.org/77930"},{"name":"77932","refsource":"OSVDB","url":"http://osvdb.org/77932"},{"name":"77926","refsource":"OSVDB","url":"http://osvdb.org/77926"},{"name":"77937","refsource":"OSVDB","url":"http://osvdb.org/77937"},{"name":"77920","refsource":"OSVDB","url":"http://osvdb.org/77920"},{"name":"wuzly-multiple-xss(71899)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/71899"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-06T23:46:03.115Z"},"title":"CVE Program Container","references":[{"name":"77929","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77929"},{"name":"77938","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77938"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://secunia.com/secunia_research/2011-86/"},{"name":"77914","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77914"},{"name":"77931","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77931"},{"name":"77923","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77923"},{"name":"77928","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77928"},{"name":"77925","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77925"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://secunia.com/secunia_research/2011-84/"},{"name":"77933","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77933"},{"name":"77921","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77921"},{"name":"46163","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/46163"},{"name":"77922","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77922"},{"name":"77927","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77927"},{"name":"77924","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77924"},{"name":"wuzly-referer-header-xss(71906)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/71906"},{"name":"77935","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77935"},{"name":"77936","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77936"},{"name":"77934","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77934"},{"name":"wuzly-login-xss(71902)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/71902"},{"name":"77930","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77930"},{"name":"77932","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77932"},{"name":"77926","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77926"},{"name":"77937","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77937"},{"name":"77920","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/77920"},{"name":"wuzly-multiple-xss(71899)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/71899"}]}]},"cveMetadata":{"assignerOrgId":"44d08088-2bea-4760-83a6-1e9be26b15ab","assignerShortName":"flexera","cveId":"CVE-2011-3835","datePublished":"2011-12-24T19:00:00.000Z","dateReserved":"2011-09-26T00:00:00.000Z","dateUpdated":"2024-08-06T23:46:03.115Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}