{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in static/js/share.js (aka the social bookmarking widget) in Web2py before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2013-05-22T10:00:00Z", "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert"}, "references": [{"name": "JVN#10461119", "tags": ["third-party-advisory", "x_refsource_JVN"], "url": "http://jvn.jp/en/jp/JVN10461119/index.html"}, {"name": "[web2py] 20121214 web2py 2.3.1 is out", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://groups.google.com/group/web2py/msg/ca10dffa2f0b2731?dmode=source&output=gplain"}, {"name": "JVNDB-2013-000040", "tags": ["third-party-advisory", "x_refsource_JVNDB"], "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000040"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "vultures@jpcert.or.jp", "ID": "CVE-2013-2311", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-site scripting (XSS) vulnerability in static/js/share.js (aka the social bookmarking widget) in Web2py before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "JVN#10461119", "refsource": "JVN", "url": "http://jvn.jp/en/jp/JVN10461119/index.html"}, {"name": "[web2py] 20121214 web2py 2.3.1 is out", "refsource": "MLIST", "url": "https://groups.google.com/group/web2py/msg/ca10dffa2f0b2731?dmode=source&output=gplain"}, {"name": "JVNDB-2013-000040", "refsource": "JVNDB", "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000040"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T15:36:44.471Z"}, "title": "CVE Program Container", "references": [{"name": "JVN#10461119", "tags": ["third-party-advisory", "x_refsource_JVN", "x_transferred"], "url": "http://jvn.jp/en/jp/JVN10461119/index.html"}, {"name": "[web2py] 20121214 web2py 2.3.1 is out", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://groups.google.com/group/web2py/msg/ca10dffa2f0b2731?dmode=source&output=gplain"}, {"name": "JVNDB-2013-000040", "tags": ["third-party-advisory", "x_refsource_JVNDB", "x_transferred"], "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000040"}]}]}, "cveMetadata": {"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "assignerShortName": "jpcert", "cveId": "CVE-2013-2311", "datePublished": "2013-05-22T10:00:00Z", "dateReserved": "2013-03-04T00:00:00Z", "dateUpdated": "2024-09-17T03:58:55.964Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:web2py:web2py:*:*:*:*:*:*:*:*", "matchCriteriaId": "28762063-7234-44F9-B634-6AF67FC3539A", "versionEndIncluding": "2.2.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.16.0:*:*:*:*:*:*:*", "matchCriteriaId": "66BE10BB-0F89-4CB5-82B9-C7965D576068", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.17.0:*:*:*:*:*:*:*", "matchCriteriaId": "70B2B05C-89BB-411F-B5C4-0D55FB3AA898", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.18.0:*:*:*:*:*:*:*", "matchCriteriaId": "CDD3D369-DD50-4108-92DB-0078264797A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.19.0:*:*:*:*:*:*:*", "matchCriteriaId": "A185DFF3-FBBD-4EBB-9A84-478A709D9242", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.20.0:*:*:*:*:*:*:*", "matchCriteriaId": "84217FB9-8BA9-48D4-A1A9-B2B7866E8C77", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.21.0:*:*:*:*:*:*:*", "matchCriteriaId": "6F6F16F6-1002-4AA3-AA56-DDD76B6DE156", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.22.0:*:*:*:*:*:*:*", "matchCriteriaId": "B61D80EB-5C55-4791-9D35-F5040CC998E3", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.23.0:*:*:*:*:*:*:*", "matchCriteriaId": "25E2B041-70DE-4EDF-93E4-9FE5A44ADAD5", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.24.0:*:*:*:*:*:*:*", "matchCriteriaId": "1FD2E1D0-E197-4EDA-A40B-38805B156568", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.25.0:*:*:*:*:*:*:*", "matchCriteriaId": "685F7E64-60AB-427A-A7A0-06EE3DD36072", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.26.0:*:*:*:*:*:*:*", "matchCriteriaId": "9FDBA7FB-3C2B-479E-BE01-7B8941BA1AA5", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.27.0:*:*:*:*:*:*:*", "matchCriteriaId": "C0C1CE26-2CA5-4781-889B-56EDB951D62D", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.28.0:*:*:*:*:*:*:*", "matchCriteriaId": "0D8E7431-FABF-4F1E-887E-DEAD3A063541", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.29.0:*:*:*:*:*:*:*", "matchCriteriaId": "4A0E7FA7-2D8C-4842-BE5F-6CB61024FA67", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.30.0:*:*:*:*:*:*:*", "matchCriteriaId": "6B3CBAF3-FF38-4D7B-9563-28F0F220BCEB", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.31.0:*:*:*:*:*:*:*", "matchCriteriaId": "386A95E1-95C3-47B4-8501-CF5313689B08", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.40.0:*:*:*:*:*:*:*", "matchCriteriaId": "459968DD-9822-46CF-BE4D-7D9E2F1421E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.41.0:*:*:*:*:*:*:*", "matchCriteriaId": "12836064-3192-4052-9403-39142C454038", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.42.0:*:*:*:*:*:*:*", "matchCriteriaId": "AE56ECA0-FAD4-4684-B0D3-7181BB70C730", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.43.0:*:*:*:*:*:*:*", "matchCriteriaId": "7AE32436-62B5-4C58-8879-9EE61925FEDF", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.44.0:*:*:*:*:*:*:*", "matchCriteriaId": "53B7D43B-FAD8-4FED-A7C7-BA33E4790477", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.45.0:*:*:*:*:*:*:*", "matchCriteriaId": "DAC65A01-5BA2-4011-814F-9661DA151411", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.46.0:*:*:*:*:*:*:*", "matchCriteriaId": "3B77B5E4-2570-4D63-93D9-131A92D54752", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.47.0:*:*:*:*:*:*:*", "matchCriteriaId": "C3EF37FE-0907-45B3-90F6-40282CA930E5", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.48.0:*:*:*:*:*:*:*", "matchCriteriaId": "6C43D771-A7FD-4F85-8065-34AD719F3D47", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.49.0:*:*:*:*:*:*:*", "matchCriteriaId": "57D21A54-6148-4B66-877B-E2853248B772", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.50.0:*:*:*:*:*:*:*", "matchCriteriaId": "49881B4E-2542-4115-AC41-D73C97C252B7", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.51.0:*:*:*:*:*:*:*", "matchCriteriaId": "9F5703A3-48BF-44B3-896B-D5C4C9B9127C", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.52.0:*:*:*:*:*:*:*", "matchCriteriaId": "C2A6D9B0-4A62-4942-8529-D44B0A51276A", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.53.0:*:*:*:*:*:*:*", "matchCriteriaId": "D794AD7C-E3B2-4448-BAD2-DCC590AF8A85", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.54.0:*:*:*:*:*:*:*", "matchCriteriaId": "6D15165E-908A-4A29-9225-0F1C3B47F271", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.55.0:*:*:*:*:*:*:*", "matchCriteriaId": "CCFA1625-2359-40D9-BD3D-886A87181DF3", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.56.0:*:*:*:*:*:*:*", "matchCriteriaId": "C85F4660-E24E-4AF5-AB10-6D9AA3C32812", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.56.1:*:*:*:*:*:*:*", "matchCriteriaId": "D661C47B-8EF3-4016-9623-E2EDD00B431D", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.56.2:*:*:*:*:*:*:*", "matchCriteriaId": "300593A0-220F-40FC-B928-91CE75E222A1", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.56.3:*:*:*:*:*:*:*", "matchCriteriaId": "4C2D320C-68FF-460A-A7A8-B85A194E64AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.56.4:*:*:*:*:*:*:*", "matchCriteriaId": "7BF6B4F1-8886-4EF1-BCC4-746142685EA9", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.57.0:*:*:*:*:*:*:*", "matchCriteriaId": "986DDF17-6B25-4F3F-A7A1-A9E1271F7ED5", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.58.0:*:*:*:*:*:*:*", "matchCriteriaId": "479060E4-7707-461E-80D7-0E2DE9DB58C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.59.0:*:*:*:*:*:*:*", "matchCriteriaId": "D2DCFC07-642C-4434-8658-4AF9274929E1", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.60.0:*:*:*:*:*:*:*", "matchCriteriaId": "77A8D4F7-E8D0-4A9A-8FEC-CC427CE77A9E", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.61.0:*:*:*:*:*:*:*", "matchCriteriaId": "F355D36F-27B9-4076-BDD7-8DA24CDFB764", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.62.0:*:*:*:*:*:*:*", "matchCriteriaId": "13EF2D1C-7CA5-4485-9D33-A589060346E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.63.0:*:*:*:*:*:*:*", "matchCriteriaId": "8BFF3545-7327-4A18-8A1A-BF3FD86EBFB9", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.63.1:*:*:*:*:*:*:*", "matchCriteriaId": "D4DB8FDE-DAAE-4A54-A444-C43A9127AE86", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.63.2:*:*:*:*:*:*:*", "matchCriteriaId": "73760ECD-0F7D-4A04-A47C-B2FCC1FD595D", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.63.3:*:*:*:*:*:*:*", "matchCriteriaId": "9A70F07B-0B92-491A-B182-B92B795533F2", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.63.4:*:*:*:*:*:*:*", "matchCriteriaId": "52E18F52-0DD2-4809-99CF-DD3C8B753048", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.63.5:*:*:*:*:*:*:*", "matchCriteriaId": "D1EC58E1-F1B6-4311-8C64-DC19966B6ADE", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.64.0:*:*:*:*:*:*:*", "matchCriteriaId": "65E8A07B-C501-47B2-8EAE-5526A9CE4237", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.64.2:*:*:*:*:*:*:*", "matchCriteriaId": "3A350985-CAB7-442F-ACC5-49445CA5A981", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.64.3:*:*:*:*:*:*:*", "matchCriteriaId": "BFE787BF-2CA5-4BB0-AD29-98D2AB7CC95A", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.64.4:*:*:*:*:*:*:*", "matchCriteriaId": "88A962AE-1F1B-4271-B2F6-899EA64E3935", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.65.0:*:*:*:*:*:*:*", "matchCriteriaId": "F9EA19D2-0196-4F5C-AAE8-54DA1C27DD5C", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.65.1:*:*:*:*:*:*:*", "matchCriteriaId": "5E86D9DE-FEAE-4ABF-95AB-0537207E2189", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.65.2:*:*:*:*:*:*:*", "matchCriteriaId": "E597484F-6228-4012-9710-C208CB87433C", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.65.3-10:*:*:*:*:*:*:*", "matchCriteriaId": "A2D07D67-3789-4E7E-9B29-9A1D9A0DB326", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.65.11:*:*:*:*:*:*:*", "matchCriteriaId": "CD285D72-379E-4986-9325-B9E80F4690B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.65.12:*:*:*:*:*:*:*", "matchCriteriaId": "3FED635A-0E3E-4CD7-89AF-98C096FC566F", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.65.13:*:*:*:*:*:*:*", "matchCriteriaId": "B26239DC-D487-4FD5-B8EC-09058618D648", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.66.0:*:*:*:*:*:*:*", "matchCriteriaId": "6367A0C3-AD67-425E-9F6B-16EC47764020", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.67.0:*:*:*:*:*:*:*", "matchCriteriaId": "D229EE84-D49A-49F3-B15C-0DA93445B23B", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.67.1:*:*:*:*:*:*:*", "matchCriteriaId": "28711353-4939-422A-8811-6FC586074E2B", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.67.2:*:*:*:*:*:*:*", "matchCriteriaId": "932BD879-09D4-48DE-A7EE-2C822927E54B", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.68.1:*:*:*:*:*:*:*", "matchCriteriaId": "D772295D-77D5-4B35-A1D9-03F1906F668A", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.68.2:*:*:*:*:*:*:*", "matchCriteriaId": "D4C9CF3A-F418-40E1-B167-8866F3AF7126", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.69.1:*:*:*:*:*:*:*", "matchCriteriaId": "3CBF815E-7261-4613-8CDC-02046DE83A66", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.70.1:*:*:*:*:*:*:*", "matchCriteriaId": "1895226D-C7B4-4BC2-B1ED-B9E6C61D3392", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.71.1:*:*:*:*:*:*:*", "matchCriteriaId": "E4FA686F-80AB-40EF-809A-8ACF080B18E9", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.72.1:*:*:*:*:*:*:*", "matchCriteriaId": "02F34FB0-EDA6-4BEF-BCEC-EF045CEF8F01", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.72.3:*:*:*:*:*:*:*", "matchCriteriaId": "CAD2ED24-EC23-4072-84A4-711EDE6E43E4", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.73.1:*:*:*:*:*:*:*", "matchCriteriaId": "C703511D-1A3E-4AC2-B1D2-C17868338FF0", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.74.1:*:*:*:*:*:*:*", "matchCriteriaId": "D651F8C6-50A4-4B65-9E7B-7957196FEE92", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.74.2-4:*:*:*:*:*:*:*", "matchCriteriaId": "8AF09883-80A6-4EB0-9917-DD8582A7F9FA", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.74.5:*:*:*:*:*:*:*", "matchCriteriaId": "A7DA8E38-BE41-47B4-B017-F806DEF6A024", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.74.6:*:*:*:*:*:*:*", "matchCriteriaId": "5FF205ED-CCDE-421E-8595-9217CCF9DF66", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.74.7:*:*:*:*:*:*:*", "matchCriteriaId": "82800E14-D622-4F5E-9793-5790EB52870B", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.74.8:*:*:*:*:*:*:*", "matchCriteriaId": "0C033EB1-27EC-4F15-8DEF-84520EFE1576", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.74.9:*:*:*:*:*:*:*", "matchCriteriaId": "63390496-827B-48B4-9618-1F036036014D", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.75.1:*:*:*:*:*:*:*", "matchCriteriaId": "0D853817-BD22-4B60-B486-4F7A959D8ECB", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.75.2:*:*:*:*:*:*:*", "matchCriteriaId": "A5BBE6F7-5D6D-4D59-AD53-C823A3CBFAB3", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.75.3:*:*:*:*:*:*:*", "matchCriteriaId": "A54864D9-AE83-4114-B7C8-D14B0201CCE6", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.75.4:*:*:*:*:*:*:*", "matchCriteriaId": "5D5F3527-6673-4569-B1C4-5EFF6DAA6C43", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.75.5:*:*:*:*:*:*:*", "matchCriteriaId": "8E22067B-4554-4009-956D-74DB49FD2778", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.76.1:*:*:*:*:*:*:*", "matchCriteriaId": "CD46F2E1-897F-46D4-9DF4-732B1C5A5210", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.76.2:*:*:*:*:*:*:*", "matchCriteriaId": "93A79DD7-24B6-4AC8-8373-34D2459DCEE5", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.76.3:*:*:*:*:*:*:*", "matchCriteriaId": "12C7CF37-E666-4709-8877-A2BE5700F605", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.76.4:*:*:*:*:*:*:*", "matchCriteriaId": "25DB104C-CF81-4DC7-AB1E-6989A6829775", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.76.5:*:*:*:*:*:*:*", "matchCriteriaId": "F94B7F70-74EB-48EF-BB57-46A3F354682F", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.77.1:*:*:*:*:*:*:*", "matchCriteriaId": "64C4495E-E9A2-450F-9EBC-09A3E2EC453F", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.77.2:*:*:*:*:*:*:*", "matchCriteriaId": "AE3E93A0-CB91-476D-82B1-DB5A681CA755", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.77.3:*:*:*:*:*:*:*", "matchCriteriaId": "6FB15A5B-3DB7-4FC1-AD79-0E7F0D54C972", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.78.1:*:*:*:*:*:*:*", "matchCriteriaId": "CE10B748-C45B-47F8-9408-D26EDF30A5F2", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.78.3:*:*:*:*:*:*:*", "matchCriteriaId": "0A753709-097B-4DF5-BF59-ECFBCD45744D", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.79.1:*:*:*:*:*:*:*", "matchCriteriaId": "0CE3089B-ABBD-43B6-BF13-2140EEC77CD5", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.79.2:*:*:*:*:*:*:*", "matchCriteriaId": "D0CAF370-DF51-4EFE-9F6C-52292CB49344", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.80.1:*:*:*:*:*:*:*", "matchCriteriaId": "12B37949-3F2B-4FB7-B394-BDD8C0C2F641", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.81.1:*:*:*:*:*:*:*", "matchCriteriaId": "0C4FCC99-96EE-43EE-B559-69D994A06337", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.81.2:*:*:*:*:*:*:*", "matchCriteriaId": "D06F95B5-AC2F-4FDC-8BF2-570AFFE6017F", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.81.3:*:*:*:*:*:*:*", "matchCriteriaId": "3A488DC6-3FD8-423C-9AB3-95C4C5F4509F", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.81.4:*:*:*:*:*:*:*", "matchCriteriaId": "5397A7E8-454F-43D1-9EAC-ADF7DDF1AB25", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.81.5:*:*:*:*:*:*:*", "matchCriteriaId": "C3427266-8C68-4EB1-8E1B-AC33AB148CDF", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.82.1:*:*:*:*:*:*:*", "matchCriteriaId": "D247A2C4-341D-4772-B771-4F3C8E9E1C01", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.83.1:*:*:*:*:*:*:*", "matchCriteriaId": "2E68B5E1-F16F-468A-A2AD-6F565DBAB708", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.83.2:*:*:*:*:*:*:*", "matchCriteriaId": "D2FB16F8-4B41-4DCF-BD48-F9218FB6981A", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.84.1:*:*:*:*:*:*:*", "matchCriteriaId": "307E138C-7EBB-4A3C-8B18-BC2A1814E5D5", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.84.4:*:*:*:*:*:*:*", "matchCriteriaId": "350F01E0-ACC9-46DD-A76D-FFB5F1C8CB6C", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.85.1:*:*:*:*:*:*:*", "matchCriteriaId": "DC5C9861-83F8-4217-9DC2-A355FDCD0F1A", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.85.3:*:*:*:*:*:*:*", "matchCriteriaId": "AEF5EAE9-9657-4CFA-9439-412EA06AAC8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.86.1:*:*:*:*:*:*:*", "matchCriteriaId": "0FD5E6AB-B84D-41EB-A6C3-5642C4A33A7E", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.86.3:*:*:*:*:*:*:*", "matchCriteriaId": "2CC6B20E-C6D9-4923-A48A-18ACE8BCC93C", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.87.1:*:*:*:*:*:*:*", "matchCriteriaId": "C60EE81C-A197-4631-8B4B-5D721528744E", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.87.2:*:*:*:*:*:*:*", "matchCriteriaId": "4673B783-435D-44C2-AFB6-F4E307236983", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.87.3:*:*:*:*:*:*:*", "matchCriteriaId": "A64800FC-A11D-4435-BCA5-AD3B3874F4FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.88.1:*:*:*:*:*:*:*", "matchCriteriaId": "C48CA601-9415-4B14-A5ED-D76CAC86F433", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.89.1:*:*:*:*:*:*:*", "matchCriteriaId": "8950FD9E-6730-4B10-AE01-26505C502780", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.89.5:*:*:*:*:*:*:*", "matchCriteriaId": "8494F70A-1285-45C9-AAC4-782FF94925B2", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.90.1:*:*:*:*:*:*:*", "matchCriteriaId": "CF598953-8362-411B-8BB4-BEEEF6B9E9A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.90.2:*:*:*:*:*:*:*", "matchCriteriaId": "4BE7B9E7-9C98-43F4-987C-F654DBEADA08", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.90.4:*:*:*:*:*:*:*", "matchCriteriaId": "168BF679-9738-4D63-ABAB-407E973AF0EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.90.5:*:*:*:*:*:*:*", "matchCriteriaId": "A7B22CB1-1288-4B41-964F-200EE064A047", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.90.6:*:*:*:*:*:*:*", "matchCriteriaId": "762A99A3-E8C9-4C04-B227-1C6C3BF2D271", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.91.1:*:*:*:*:*:*:*", "matchCriteriaId": "783E8549-EB9D-49F2-B30A-AC06EB5F09C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.91.2:*:*:*:*:*:*:*", "matchCriteriaId": "C5A2EDF3-A7B8-49B8-98B0-70666082FC1A", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.91.5:*:*:*:*:*:*:*", "matchCriteriaId": "50DF46E7-B8E9-4703-842E-EC6CD9DC2B7E", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.91.6:*:*:*:*:*:*:*", "matchCriteriaId": "0F2CA345-3EBD-4AA6-BF70-8CC2D8BD5128", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.92.1:*:*:*:*:*:*:*", "matchCriteriaId": "25770277-2375-40DF-9B3B-6323BEDA7F51", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.93.1:*:*:*:*:*:*:*", "matchCriteriaId": "B0CAFB1B-DAC6-4F09-B4FC-39A7CCC61663", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.93.2:*:*:*:*:*:*:*", "matchCriteriaId": "05F3A1FE-BFC6-4322-AEFE-5BFDB558F1C5", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.94.1:*:*:*:*:*:*:*", "matchCriteriaId": "A0DEA28C-AF7A-43C7-8E21-C981AEAAB676", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.94.2:*:*:*:*:*:*:*", "matchCriteriaId": "8782E7F7-8650-4EB2-9DE6-1C3F6B8DC990", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.94.3:*:*:*:*:*:*:*", "matchCriteriaId": "BC439282-81A6-454E-AA4F-985B79EC3D10", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.94.4:*:*:*:*:*:*:*", "matchCriteriaId": "2C87BE33-F0D9-4221-A529-29226CC4948A", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.94.5:*:*:*:*:*:*:*", "matchCriteriaId": "877F3F70-69F2-48E2-85A5-5A9835FDE03A", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.94.6:*:*:*:*:*:*:*", "matchCriteriaId": "C56D6726-3406-49DF-9BC9-F30188B30810", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.95.1:*:*:*:*:*:*:*", "matchCriteriaId": "C31B7F57-AC24-497E-BAA0-4F524EC728DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.96.1:*:*:*:*:*:*:*", "matchCriteriaId": "C97745DF-33DC-4ADB-B860-51DB931102FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.96.2:*:*:*:*:*:*:*", "matchCriteriaId": "47D55F31-0F62-4651-B094-5ECF0ACFB01D", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.96.4:*:*:*:*:*:*:*", "matchCriteriaId": "A2DA74D5-1E31-4F42-AF1C-9BF4F9A94A71", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.97.1:*:*:*:*:*:*:*", "matchCriteriaId": "DFFD2035-0A45-4DEE-857D-BF469EB8C234", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.98.1:*:*:*:*:*:*:*", "matchCriteriaId": "3368832D-88A7-4D31-90F9-E971CACB3990", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.98.2:*:*:*:*:*:*:*", "matchCriteriaId": "0FA3694B-A4A1-4A7E-81C5-0AD6A91A9698", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.99.1:*:*:*:*:*:*:*", "matchCriteriaId": "791C57CC-6275-480C-A0A8-FBD8FDC39548", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.99.2:*:*:*:*:*:*:*", "matchCriteriaId": "55EC2F67-F900-4E80-8F15-FAFB171269AA", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.99.3:*:*:*:*:*:*:*", "matchCriteriaId": "EA6C9DFB-F170-4D62-BCE0-AA5333877BF5", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.99.4:*:*:*:*:*:*:*", "matchCriteriaId": "115A30E4-0174-4DBC-83F4-8063A25F66C0", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.99.5:*:*:*:*:*:*:*", "matchCriteriaId": "3E91B3E9-B414-4EC3-8556-60B998F59839", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:1.99.7:*:*:*:*:*:*:*", "matchCriteriaId": "FC5AA0E8-A6D1-492D-903C-BB52E6AC1AA7", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:2.0.1-11:*:*:*:*:*:*:*", "matchCriteriaId": "38315A9D-E6FD-4A6F-8E4C-EB253D9CF38D", "vulnerable": true}, {"criteria": "cpe:2.3:a:web2py:web2py:2.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "A7F2BD9F-8FBA-4A68-A457-BD29216D4CB1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in static/js/share.js (aka the social bookmarking widget) in Web2py before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."}, {"lang": "es", "value": "Vulnerabilidad Cross-site scripting (XSS) en static/js/share.js (tambi\u00e9n conocido como bookmarking widget) en Web2py anterior a v2.3.1 permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s de vectores no especificados."}], "id": "CVE-2013-2311", "lastModified": "2024-11-21T01:51:26.627", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2013-05-22T13:29:55.850", "references": [{"source": "vultures@jpcert.or.jp", "url": "http://jvn.jp/en/jp/JVN10461119/index.html"}, {"source": "vultures@jpcert.or.jp", "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000040"}, {"source": "vultures@jpcert.or.jp", "url": "https://groups.google.com/group/web2py/msg/ca10dffa2f0b2731?dmode=source&output=gplain"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://jvn.jp/en/jp/JVN10461119/index.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000040"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://groups.google.com/group/web2py/msg/ca10dffa2f0b2731?dmode=source&output=gplain"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}