Cross-Site Scripting Vulnerability in SEO Panel by SEO Panel Team
CVE-2017-10838

6.1MEDIUM

Key Information:

Vendor: Seo Panel
Status: Seo Panel
Vendor: CVE Published:; 29 August 2017

What is CVE-2017-10838?

A cross-site scripting vulnerability exists in SEO Panel, allowing attackers to inject arbitrary web scripts or HTML into affected versions. This can lead to unauthorized actions being performed on behalf of users or data theft. Users are encouraged to upgrade to version 3.11.0 or later to mitigate the risk.

Affected Version(s)

SEO Panel prior to version 3.11.0

References

https://jvn.jp/en/jp/JVN39628662/index.html

third-party-advisoryx_refsource_JVN

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Aug 29, 2017
Vulnerability Reserved
Jul 4, 2017

JSON

Seo Panel

What is CVE-2017-10838?

Affected Version(s)

References

CVSS V3.1

Timeline