Home

CVE-2010-3294

Description

Cross-site scripting (XSS) vulnerability in apc.php in the Alternative PHP Cache (APC) extension before 3.1.4 for PHP allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Risk Information

Base Score
8.2
MODERATE
Vector
AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N
EPSS Score
Exploitation Probability
0.48

Associated Vulnerability

VulnerabilityOS Platform
Php-pecl-apc update (CESA-2012:0811) php-pecl-apc-3.1.9-2.el6.i686.rpmLinux
Php-pecl-apc update (CESA-2012:0811) php-pecl-apc-3.1.9-2.el6.x86_64.rpmLinux
Php-pecl-apc update (CESA-2012:0811) php-pecl-apc-devel-3.1.9-2.el6.i686.rpmLinux
Php-pecl-apc update (CESA-2012:0811) php-pecl-apc-devel-3.1.9-2.el6.x86_64.rpmLinux
(RHSA-2012:0811) Low: php-pecl-apc security, bug fix, and enhancement update php-pecl-apc-3.1.9-2.el6.i686.rpmLinux
(RHSA-2012:0811) Low: php-pecl-apc security, bug fix, and enhancement update php-pecl-apc-3.1.9-2.el6.x86_64.rpmLinux
(RHSA-2012:0811) Low: php-pecl-apc security, bug fix, and enhancement update php-pecl-apc-devel-3.1.9-2.el6.i686.rpmLinux
(RHSA-2012:0811) Low: php-pecl-apc security, bug fix, and enhancement update php-pecl-apc-devel-3.1.9-2.el6.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234