fkie_nvd - fkie_cve-2013-2311

fkie_cve-2013-2311

Vulnerability from fkie_nvd

Published

2013-05-22 13:29

Modified

2025-04-11 00:51

Severity ?

Summary

Cross-site scripting (XSS) vulnerability in static/js/share.js (aka the social bookmarking widget) in Web2py before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

	URL	Tags
	vultures@jpcert.or.jp	http://jvn.jp/en/jp/JVN10461119/index.html
	vultures@jpcert.or.jp	http://jvndb.jvn.jp/jvndb/JVNDB-2013-000040
	vultures@jpcert.or.jp	https://groups.google.com/group/web2py/msg/ca10dffa2f0b2731?dmode=source&output=gplain
	af854a3a-2127-422b-91ae-364da2661108	http://jvn.jp/en/jp/JVN10461119/index.html
	af854a3a-2127-422b-91ae-364da2661108	http://jvndb.jvn.jp/jvndb/JVNDB-2013-000040
	af854a3a-2127-422b-91ae-364da2661108	https://groups.google.com/group/web2py/msg/ca10dffa2f0b2731?dmode=source&output=gplain

Impacted products

Vendor	Product	Version
web2py	web2py	*
web2py	web2py	1.16.0
web2py	web2py	1.17.0
web2py	web2py	1.18.0
web2py	web2py	1.19.0
web2py	web2py	1.20.0
web2py	web2py	1.21.0
web2py	web2py	1.22.0
web2py	web2py	1.23.0
web2py	web2py	1.24.0
web2py	web2py	1.25.0
web2py	web2py	1.26.0
web2py	web2py	1.27.0
web2py	web2py	1.28.0
web2py	web2py	1.29.0
web2py	web2py	1.30.0
web2py	web2py	1.31.0
web2py	web2py	1.40.0
web2py	web2py	1.41.0
web2py	web2py	1.42.0
web2py	web2py	1.43.0
web2py	web2py	1.44.0
web2py	web2py	1.45.0
web2py	web2py	1.46.0
web2py	web2py	1.47.0
web2py	web2py	1.48.0
web2py	web2py	1.49.0
web2py	web2py	1.50.0
web2py	web2py	1.51.0
web2py	web2py	1.52.0
web2py	web2py	1.53.0
web2py	web2py	1.54.0
web2py	web2py	1.55.0
web2py	web2py	1.56.0
web2py	web2py	1.56.1
web2py	web2py	1.56.2
web2py	web2py	1.56.3
web2py	web2py	1.56.4
web2py	web2py	1.57.0
web2py	web2py	1.58.0
web2py	web2py	1.59.0
web2py	web2py	1.60.0
web2py	web2py	1.61.0
web2py	web2py	1.62.0
web2py	web2py	1.63.0
web2py	web2py	1.63.1
web2py	web2py	1.63.2
web2py	web2py	1.63.3
web2py	web2py	1.63.4
web2py	web2py	1.63.5
web2py	web2py	1.64.0
web2py	web2py	1.64.2
web2py	web2py	1.64.3
web2py	web2py	1.64.4
web2py	web2py	1.65.0
web2py	web2py	1.65.1
web2py	web2py	1.65.2
web2py	web2py	1.65.3-10
web2py	web2py	1.65.11
web2py	web2py	1.65.12
web2py	web2py	1.65.13
web2py	web2py	1.66.0
web2py	web2py	1.67.0
web2py	web2py	1.67.1
web2py	web2py	1.67.2
web2py	web2py	1.68.1
web2py	web2py	1.68.2
web2py	web2py	1.69.1
web2py	web2py	1.70.1
web2py	web2py	1.71.1
web2py	web2py	1.72.1
web2py	web2py	1.72.3
web2py	web2py	1.73.1
web2py	web2py	1.74.1
web2py	web2py	1.74.2-4
web2py	web2py	1.74.5
web2py	web2py	1.74.6
web2py	web2py	1.74.7
web2py	web2py	1.74.8
web2py	web2py	1.74.9
web2py	web2py	1.75.1
web2py	web2py	1.75.2
web2py	web2py	1.75.3
web2py	web2py	1.75.4
web2py	web2py	1.75.5
web2py	web2py	1.76.1
web2py	web2py	1.76.2
web2py	web2py	1.76.3
web2py	web2py	1.76.4
web2py	web2py	1.76.5
web2py	web2py	1.77.1
web2py	web2py	1.77.2
web2py	web2py	1.77.3
web2py	web2py	1.78.1
web2py	web2py	1.78.3
web2py	web2py	1.79.1
web2py	web2py	1.79.2
web2py	web2py	1.80.1
web2py	web2py	1.81.1
web2py	web2py	1.81.2
web2py	web2py	1.81.3
web2py	web2py	1.81.4
web2py	web2py	1.81.5
web2py	web2py	1.82.1
web2py	web2py	1.83.1
web2py	web2py	1.83.2
web2py	web2py	1.84.1
web2py	web2py	1.84.4
web2py	web2py	1.85.1
web2py	web2py	1.85.3
web2py	web2py	1.86.1
web2py	web2py	1.86.3
web2py	web2py	1.87.1
web2py	web2py	1.87.2
web2py	web2py	1.87.3
web2py	web2py	1.88.1
web2py	web2py	1.89.1
web2py	web2py	1.89.5
web2py	web2py	1.90.1
web2py	web2py	1.90.2
web2py	web2py	1.90.4
web2py	web2py	1.90.5
web2py	web2py	1.90.6
web2py	web2py	1.91.1
web2py	web2py	1.91.2
web2py	web2py	1.91.5
web2py	web2py	1.91.6
web2py	web2py	1.92.1
web2py	web2py	1.93.1
web2py	web2py	1.93.2
web2py	web2py	1.94.1
web2py	web2py	1.94.2
web2py	web2py	1.94.3
web2py	web2py	1.94.4
web2py	web2py	1.94.5
web2py	web2py	1.94.6
web2py	web2py	1.95.1
web2py	web2py	1.96.1
web2py	web2py	1.96.2
web2py	web2py	1.96.4
web2py	web2py	1.97.1
web2py	web2py	1.98.1
web2py	web2py	1.98.2
web2py	web2py	1.99.1
web2py	web2py	1.99.2
web2py	web2py	1.99.3
web2py	web2py	1.99.4
web2py	web2py	1.99.5
web2py	web2py	1.99.7
web2py	web2py	2.0.1-11
web2py	web2py	2.1.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:web2py:web2py:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "28762063-7234-44F9-B634-6AF67FC3539A",
              "versionEndIncluding": "2.2.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.16.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "66BE10BB-0F89-4CB5-82B9-C7965D576068",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.17.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "70B2B05C-89BB-411F-B5C4-0D55FB3AA898",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.18.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "CDD3D369-DD50-4108-92DB-0078264797A2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.19.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A185DFF3-FBBD-4EBB-9A84-478A709D9242",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.20.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "84217FB9-8BA9-48D4-A1A9-B2B7866E8C77",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.21.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6F6F16F6-1002-4AA3-AA56-DDD76B6DE156",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.22.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "B61D80EB-5C55-4791-9D35-F5040CC998E3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.23.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "25E2B041-70DE-4EDF-93E4-9FE5A44ADAD5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.24.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1FD2E1D0-E197-4EDA-A40B-38805B156568",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.25.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "685F7E64-60AB-427A-A7A0-06EE3DD36072",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.26.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9FDBA7FB-3C2B-479E-BE01-7B8941BA1AA5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.27.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "C0C1CE26-2CA5-4781-889B-56EDB951D62D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.28.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D8E7431-FABF-4F1E-887E-DEAD3A063541",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.29.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "4A0E7FA7-2D8C-4842-BE5F-6CB61024FA67",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.30.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6B3CBAF3-FF38-4D7B-9563-28F0F220BCEB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.31.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "386A95E1-95C3-47B4-8501-CF5313689B08",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.40.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "459968DD-9822-46CF-BE4D-7D9E2F1421E7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.41.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "12836064-3192-4052-9403-39142C454038",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.42.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "AE56ECA0-FAD4-4684-B0D3-7181BB70C730",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.43.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7AE32436-62B5-4C58-8879-9EE61925FEDF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.44.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "53B7D43B-FAD8-4FED-A7C7-BA33E4790477",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.45.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "DAC65A01-5BA2-4011-814F-9661DA151411",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.46.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B77B5E4-2570-4D63-93D9-131A92D54752",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.47.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "C3EF37FE-0907-45B3-90F6-40282CA930E5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.48.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6C43D771-A7FD-4F85-8065-34AD719F3D47",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.49.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "57D21A54-6148-4B66-877B-E2853248B772",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.50.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "49881B4E-2542-4115-AC41-D73C97C252B7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.51.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9F5703A3-48BF-44B3-896B-D5C4C9B9127C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.52.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "C2A6D9B0-4A62-4942-8529-D44B0A51276A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.53.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D794AD7C-E3B2-4448-BAD2-DCC590AF8A85",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.54.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D15165E-908A-4A29-9225-0F1C3B47F271",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.55.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCFA1625-2359-40D9-BD3D-886A87181DF3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.56.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "C85F4660-E24E-4AF5-AB10-6D9AA3C32812",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.56.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D661C47B-8EF3-4016-9623-E2EDD00B431D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.56.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "300593A0-220F-40FC-B928-91CE75E222A1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.56.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "4C2D320C-68FF-460A-A7A8-B85A194E64AE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.56.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "7BF6B4F1-8886-4EF1-BCC4-746142685EA9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.57.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "986DDF17-6B25-4F3F-A7A1-A9E1271F7ED5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.58.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "479060E4-7707-461E-80D7-0E2DE9DB58C4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.59.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D2DCFC07-642C-4434-8658-4AF9274929E1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.60.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "77A8D4F7-E8D0-4A9A-8FEC-CC427CE77A9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.61.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F355D36F-27B9-4076-BDD7-8DA24CDFB764",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.62.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "13EF2D1C-7CA5-4485-9D33-A589060346E7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.63.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8BFF3545-7327-4A18-8A1A-BF3FD86EBFB9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.63.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4DB8FDE-DAAE-4A54-A444-C43A9127AE86",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.63.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "73760ECD-0F7D-4A04-A47C-B2FCC1FD595D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.63.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A70F07B-0B92-491A-B182-B92B795533F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.63.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "52E18F52-0DD2-4809-99CF-DD3C8B753048",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.63.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "D1EC58E1-F1B6-4311-8C64-DC19966B6ADE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.64.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "65E8A07B-C501-47B2-8EAE-5526A9CE4237",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.64.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "3A350985-CAB7-442F-ACC5-49445CA5A981",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.64.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "BFE787BF-2CA5-4BB0-AD29-98D2AB7CC95A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.64.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "88A962AE-1F1B-4271-B2F6-899EA64E3935",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.65.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F9EA19D2-0196-4F5C-AAE8-54DA1C27DD5C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.65.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "5E86D9DE-FEAE-4ABF-95AB-0537207E2189",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.65.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E597484F-6228-4012-9710-C208CB87433C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.65.3-10:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2D07D67-3789-4E7E-9B29-9A1D9A0DB326",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.65.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD285D72-379E-4986-9325-B9E80F4690B6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.65.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "3FED635A-0E3E-4CD7-89AF-98C096FC566F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.65.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "B26239DC-D487-4FD5-B8EC-09058618D648",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.66.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6367A0C3-AD67-425E-9F6B-16EC47764020",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.67.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D229EE84-D49A-49F3-B15C-0DA93445B23B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.67.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "28711353-4939-422A-8811-6FC586074E2B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.67.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "932BD879-09D4-48DE-A7EE-2C822927E54B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.68.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D772295D-77D5-4B35-A1D9-03F1906F668A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.68.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4C9CF3A-F418-40E1-B167-8866F3AF7126",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.69.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "3CBF815E-7261-4613-8CDC-02046DE83A66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.70.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "1895226D-C7B4-4BC2-B1ED-B9E6C61D3392",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.71.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4FA686F-80AB-40EF-809A-8ACF080B18E9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.72.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "02F34FB0-EDA6-4BEF-BCEC-EF045CEF8F01",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.72.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "CAD2ED24-EC23-4072-84A4-711EDE6E43E4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.73.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C703511D-1A3E-4AC2-B1D2-C17868338FF0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.74.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D651F8C6-50A4-4B65-9E7B-7957196FEE92",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.74.2-4:*:*:*:*:*:*:*",
              "matchCriteriaId": "8AF09883-80A6-4EB0-9917-DD8582A7F9FA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.74.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7DA8E38-BE41-47B4-B017-F806DEF6A024",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.74.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FF205ED-CCDE-421E-8595-9217CCF9DF66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.74.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "82800E14-D622-4F5E-9793-5790EB52870B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.74.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C033EB1-27EC-4F15-8DEF-84520EFE1576",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.74.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "63390496-827B-48B4-9618-1F036036014D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.75.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D853817-BD22-4B60-B486-4F7A959D8ECB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.75.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5BBE6F7-5D6D-4D59-AD53-C823A3CBFAB3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.75.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "A54864D9-AE83-4114-B7C8-D14B0201CCE6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.75.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "5D5F3527-6673-4569-B1C4-5EFF6DAA6C43",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.75.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "8E22067B-4554-4009-956D-74DB49FD2778",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.76.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD46F2E1-897F-46D4-9DF4-732B1C5A5210",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.76.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "93A79DD7-24B6-4AC8-8373-34D2459DCEE5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.76.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "12C7CF37-E666-4709-8877-A2BE5700F605",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.76.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "25DB104C-CF81-4DC7-AB1E-6989A6829775",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.76.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "F94B7F70-74EB-48EF-BB57-46A3F354682F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.77.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "64C4495E-E9A2-450F-9EBC-09A3E2EC453F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.77.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "AE3E93A0-CB91-476D-82B1-DB5A681CA755",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.77.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "6FB15A5B-3DB7-4FC1-AD79-0E7F0D54C972",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.78.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE10B748-C45B-47F8-9408-D26EDF30A5F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.78.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A753709-097B-4DF5-BF59-ECFBCD45744D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.79.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "0CE3089B-ABBD-43B6-BF13-2140EEC77CD5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.79.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D0CAF370-DF51-4EFE-9F6C-52292CB49344",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.80.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "12B37949-3F2B-4FB7-B394-BDD8C0C2F641",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.81.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C4FCC99-96EE-43EE-B559-69D994A06337",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.81.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D06F95B5-AC2F-4FDC-8BF2-570AFFE6017F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.81.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "3A488DC6-3FD8-423C-9AB3-95C4C5F4509F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.81.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "5397A7E8-454F-43D1-9EAC-ADF7DDF1AB25",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.81.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "C3427266-8C68-4EB1-8E1B-AC33AB148CDF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.82.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D247A2C4-341D-4772-B771-4F3C8E9E1C01",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.83.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "2E68B5E1-F16F-468A-A2AD-6F565DBAB708",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.83.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D2FB16F8-4B41-4DCF-BD48-F9218FB6981A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.84.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "307E138C-7EBB-4A3C-8B18-BC2A1814E5D5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.84.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "350F01E0-ACC9-46DD-A76D-FFB5F1C8CB6C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.85.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "DC5C9861-83F8-4217-9DC2-A355FDCD0F1A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.85.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "AEF5EAE9-9657-4CFA-9439-412EA06AAC8F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.86.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "0FD5E6AB-B84D-41EB-A6C3-5642C4A33A7E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.86.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CC6B20E-C6D9-4923-A48A-18ACE8BCC93C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.87.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C60EE81C-A197-4631-8B4B-5D721528744E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.87.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "4673B783-435D-44C2-AFB6-F4E307236983",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.87.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "A64800FC-A11D-4435-BCA5-AD3B3874F4FC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.88.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C48CA601-9415-4B14-A5ED-D76CAC86F433",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.89.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8950FD9E-6730-4B10-AE01-26505C502780",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.89.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "8494F70A-1285-45C9-AAC4-782FF94925B2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.90.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CF598953-8362-411B-8BB4-BEEEF6B9E9A9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.90.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "4BE7B9E7-9C98-43F4-987C-F654DBEADA08",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.90.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "168BF679-9738-4D63-ABAB-407E973AF0EB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.90.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7B22CB1-1288-4B41-964F-200EE064A047",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.90.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "762A99A3-E8C9-4C04-B227-1C6C3BF2D271",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.91.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "783E8549-EB9D-49F2-B30A-AC06EB5F09C2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.91.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5A2EDF3-A7B8-49B8-98B0-70666082FC1A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.91.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "50DF46E7-B8E9-4703-842E-EC6CD9DC2B7E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.91.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "0F2CA345-3EBD-4AA6-BF70-8CC2D8BD5128",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.92.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "25770277-2375-40DF-9B3B-6323BEDA7F51",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.93.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B0CAFB1B-DAC6-4F09-B4FC-39A7CCC61663",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.93.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "05F3A1FE-BFC6-4322-AEFE-5BFDB558F1C5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.94.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A0DEA28C-AF7A-43C7-8E21-C981AEAAB676",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.94.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "8782E7F7-8650-4EB2-9DE6-1C3F6B8DC990",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.94.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "BC439282-81A6-454E-AA4F-985B79EC3D10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.94.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "2C87BE33-F0D9-4221-A529-29226CC4948A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.94.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "877F3F70-69F2-48E2-85A5-5A9835FDE03A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.94.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "C56D6726-3406-49DF-9BC9-F30188B30810",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.95.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C31B7F57-AC24-497E-BAA0-4F524EC728DC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.96.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C97745DF-33DC-4ADB-B860-51DB931102FC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.96.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "47D55F31-0F62-4651-B094-5ECF0ACFB01D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.96.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2DA74D5-1E31-4F42-AF1C-9BF4F9A94A71",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.97.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "DFFD2035-0A45-4DEE-857D-BF469EB8C234",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.98.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "3368832D-88A7-4D31-90F9-E971CACB3990",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.98.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "0FA3694B-A4A1-4A7E-81C5-0AD6A91A9698",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.99.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "791C57CC-6275-480C-A0A8-FBD8FDC39548",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.99.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "55EC2F67-F900-4E80-8F15-FAFB171269AA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.99.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA6C9DFB-F170-4D62-BCE0-AA5333877BF5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.99.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "115A30E4-0174-4DBC-83F4-8063A25F66C0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.99.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "3E91B3E9-B414-4EC3-8556-60B998F59839",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:1.99.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "FC5AA0E8-A6D1-492D-903C-BB52E6AC1AA7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:2.0.1-11:*:*:*:*:*:*:*",
              "matchCriteriaId": "38315A9D-E6FD-4A6F-8E4C-EB253D9CF38D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:web2py:web2py:2.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7F2BD9F-8FBA-4A68-A457-BD29216D4CB1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cross-site scripting (XSS) vulnerability in static/js/share.js (aka the social bookmarking widget) in Web2py before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad Cross-site scripting (XSS) en static/js/share.js (tambi\u00e9n conocido como bookmarking widget) en Web2py anterior a v2.3.1 permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s de vectores no especificados."
    }
  ],
  "id": "CVE-2013-2311",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2013-05-22T13:29:55.850",
  "references": [
    {
      "source": "vultures@jpcert.or.jp",
      "url": "http://jvn.jp/en/jp/JVN10461119/index.html"
    },
    {
      "source": "vultures@jpcert.or.jp",
      "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000040"
    },
    {
      "source": "vultures@jpcert.or.jp",
      "url": "https://groups.google.com/group/web2py/msg/ca10dffa2f0b2731?dmode=source\u0026output=gplain"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://jvn.jp/en/jp/JVN10461119/index.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000040"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://groups.google.com/group/web2py/msg/ca10dffa2f0b2731?dmode=source\u0026output=gplain"
    }
  ],
  "sourceIdentifier": "vultures@jpcert.or.jp",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2013-2311 (GCVE-0-2013-2311)

Vulnerability from cvelistv5

Published

2013-05-22 10:00

Modified

2024-09-17 03:58

Severity ?

CWE

Summary

References

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted