CVE-2021-4263
CVSS V2 None
CVSS V3 None
Description
A vulnerability, which was classified as problematic, has been found in leanote 2.6.1. This issue affects the function define of the file public/js/plugins/history.js. The manipulation of the argument content leads to cross site scripting. The attack may be initiated remotely. The name of the patch is 0f9733c890077942150696dcc6d2b1482b7a0a19. It is recommended to apply a patch to fix this issue. The identifier VDB-216461 was assigned to this vulnerability.
Overview
- CVE ID
- CVE-2021-4263
- Assigner
- cna@vuldb.com
- Vulnerability Status
- Modified
- Published Version
- 2022-12-21T19:15:12
- Last Modified Date
- 2023-03-03T20:15:09
Weakness Enumerations
CPE Configuration (Product)
CPE | Vulnerable | Operator | Version Start | Version End |
---|---|---|---|---|
cpe:2.3:a:leanote:leanote:*:*:*:*:*:*:*:* | 1 | OR | 2021-03-27 |
References
Reference URL | Reference Tags |
---|---|
https://github.com/leanote/leanote/commit/0f9733c890077942150696dcc6d2b1482b7a0a19 | Patch Third Party Advisory |
https://vuldb.com/?ctiid.216461 | |
https://vuldb.com/?id.216461 | Third Party Advisory |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2021-4263 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4263 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2022-12-21 20:16:15 | Added to TrackCVE | |||
2022-12-21 20:16:16 | Weakness Enumeration | new | ||
2022-12-22 19:15:43 | Awaiting Analysis | Undergoing Analysis | Vulnerability Status | updated |
2022-12-27 23:14:46 | 2022-12-27T22:47:37 | CVE Modified Date | updated | |
2022-12-27 23:14:46 | Undergoing Analysis | Analyzed | Vulnerability Status | updated |
2022-12-27 23:14:47 | Weakness Enumeration | update | ||
2022-12-27 23:14:49 | CPE Information | updated | ||
2023-03-03 20:16:36 | 2023-03-03T20:15:09 | CVE Modified Date | updated | |
2023-03-03 20:16:36 | Analyzed | Modified | Vulnerability Status | updated |
2023-03-03 20:16:37 | A vulnerability, which was classified as problematic, has been found in leanote. This issue affects the function define of the file public/js/plugins/history.js. The manipulation of the argument content leads to cross site scripting. The attack may be initiated remotely. The name of the patch is https:/github.com/leanote/leanote/commit/0f9733c890077942150696dcc6d2b1482b7a0a19. It is recommended to apply a patch to fix this issue. The identifier VDB-216461 was assigned to this vulnerability. | A vulnerability, which was classified as problematic, has been found in leanote 2.6.1. This issue affects the function define of the file public/js/plugins/history.js. The manipulation of the argument content leads to cross site scripting. The attack may be initiated remotely. The name of the patch is 0f9733c890077942150696dcc6d2b1482b7a0a19. It is recommended to apply a patch to fix this issue. The identifier VDB-216461 was assigned to this vulnerability. | Description | updated |
2023-03-03 20:16:37 | References | updated | ||
2023-03-03 20:16:37 | CVSS V3 information | new | ||
2023-03-03 20:16:37 | CVSS V2 information | new |