CVE-2011-3642 : Cross-site scripting (XSS) vulnerability in Flowplayer Flash 3.2.7 through 3.2.16, as used in the News system (news) ext

Cross-site scripting (XSS) vulnerability in Flowplayer Flash 3.2.7 through 3.2.16, as used in the News system (news) extension for TYPO3 and Mahara, allows remote attackers to inject arbitrary web script or HTML via the plugin configuration directive in a reference to an external domain plugin.

Published 2020-02-08 16:15:10

Updated 2020-02-12 16:54:36

Source MITRE

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Exploit prediction scoring system (EPSS) score for CVE-2011-3642

Probability of exploitation activity in the next 30 days: 1.56%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 87 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2011-3642

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
9.6	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H	2.8	6.0	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2011-3642

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-3642

http://appsec.ws/Presentations/FlashFlooding.pdf

appsec.ws
Broken Link
http://secunia.com/advisories/54206

About Secunia Research | Flexera
Third Party Advisory
http://secunia.com/advisories/52074

About Secunia Research | Flexera
Third Party Advisory
https://bugs.launchpad.net/mahara/+bug/1103748

Bug #1103748 “included flowplayer 3.2.7 is vulnerable” : Bugs : Mahara
Third Party Advisory
https://code.google.com/p/flowplayer-core/issues/detail?id=441

Google Code Archive - Long-term storage for Google Code Project Hosting.
Exploit;Third Party Advisory
https://mahara.org/interaction/forum/topic.php?id=5237

Security Announcements - External vulnerability in Mahara flowplayer in <1.5.8 and <1.6.3 - Mahara ePortfolio System
Third Party Advisory
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-009

Page Not Found
Broken Link
http://web.appsec.ws/FlashExploitDatabase.php

Broken Link

CVEs referencing this url
https://www.securityfocus.com/bid/48651

Flowplayer 'linkUrl' Parameter Cross Site Scripting Vulnerability
Third Party Advisory;VDB Entry
http://secunia.com/advisories/58854

Sign in
Third Party Advisory

Products affected by CVE-2011-3642

Flowplayer » Flowplayer Flash » For Mahara
Versions from including (>=) 3.2.7 and up to, including, (<=) 3.2.16
cpe:2.3:a:flowplayer:flowplayer_flash:*:*:*:*:*:mahara:*:*
Matching versions
Flowplayer » Flowplayer Flash » For Typo3
Versions from including (>=) 3.2.7 and up to, including, (<=) 3.2.16
cpe:2.3:a:flowplayer:flowplayer_flash:*:*:*:*:*:typo3:*:*
Matching versions

Vulnerability Details : CVE-2011-3642

Exploit prediction scoring system (EPSS) score for CVE-2011-3642

CVSS scores for CVE-2011-3642

CWE ids for CVE-2011-3642

References for CVE-2011-3642

Products affected by CVE-2011-3642