What is the severity of CVE-2012-4003?

CVE-2012-4003 is classified as a medium severity vulnerability due to the potential for cross-site scripting attacks.

How can I fix CVE-2012-4003?

To fix CVE-2012-4003, upgrade your GLPI installation to version 0.83.3 or later.

Which versions of GLPI are affected by CVE-2012-4003?

CVE-2012-4003 affects GLPI versions prior to 0.83.3, including all versions from 0.20 up to and including 0.83.2.

What type of vulnerability is CVE-2012-4003?

CVE-2012-4003 is a cross-site scripting (XSS) vulnerability that allows attackers to inject arbitrary web scripts or HTML.

Can I mitigate CVE-2012-4003 without upgrading?

Mitigation without upgrading is difficult; however, implementing strict input validation and output encoding can help reduce the risk.

Vulnerability/
CVE-2012-4003

medium

4.3

CWE

9/10/2012

6/8/2024

CVE-2012-4003: XSS

First published: Tue Oct 09 2012(Updated: )

Multiple cross-site scripting (XSS) vulnerabilities in GLPI-PROJECT GLPI before 0.83.3 allow remote attackers to inject arbitrary web script or HTML via unknown vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
GLPI	<=0.83.2
GLPI	=0.5
GLPI	=0.5-rc1
GLPI	=0.5-rc2
GLPI	=0.6
GLPI	=0.6-rc1
GLPI	=0.6-rc2
GLPI	=0.6-rc3
GLPI	=0.20
GLPI	=0.21
GLPI	=0.30
GLPI	=0.31
GLPI	=0.40
GLPI	=0.41
GLPI	=0.42
GLPI	=0.51
GLPI	=0.51a
GLPI	=0.65
GLPI	=0.65-rc1
GLPI	=0.65-rc2
GLPI	=0.68
GLPI	=0.68-rc1
GLPI	=0.68-rc2
GLPI	=0.68-rc3
GLPI	=0.68.1
GLPI	=0.68.2
GLPI	=0.68.3
GLPI	=0.70
GLPI	=0.70-rc1
GLPI	=0.70-rc2
GLPI	=0.70-rc3
GLPI	=0.70.1
GLPI	=0.70.2
GLPI	=0.71
GLPI	=0.71.1
GLPI	=0.71.1-rc1
GLPI	=0.71.1-rc2
GLPI	=0.71.1-rc3
GLPI	=0.71.2
GLPI	=0.71.3
GLPI	=0.71.4
GLPI	=0.71.5
GLPI	=0.71.6
GLPI	=0.72
GLPI	=0.72-rc1
GLPI	=0.72-rc2
GLPI	=0.72-rc3
GLPI	=0.72.1
GLPI	=0.72.2
GLPI	=0.72.3
GLPI	=0.72.4
GLPI	=0.78
GLPI	=0.78.1
GLPI	=0.78.2
GLPI	=0.78.3
GLPI	=0.78.4
GLPI	=0.78.5
GLPI	=0.80
GLPI	=0.80.1
GLPI	=0.80.2
GLPI	=0.80.3
GLPI	=0.80.4
GLPI	=0.80.5
GLPI	=0.80.6
GLPI	=0.80.7
GLPI	=0.80.61
GLPI	=0.83
GLPI	=0.83.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-4003?
CVE-2012-4003 is classified as a medium severity vulnerability due to the potential for cross-site scripting attacks.
How can I fix CVE-2012-4003?
To fix CVE-2012-4003, upgrade your GLPI installation to version 0.83.3 or later.
Which versions of GLPI are affected by CVE-2012-4003?
CVE-2012-4003 affects GLPI versions prior to 0.83.3, including all versions from 0.20 up to and including 0.83.2.
What type of vulnerability is CVE-2012-4003?
CVE-2012-4003 is a cross-site scripting (XSS) vulnerability that allows attackers to inject arbitrary web scripts or HTML.
Can I mitigate CVE-2012-4003 without upgrading?
Mitigation without upgrading is difficult; however, implementing strict input validation and output encoding can help reduce the risk.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/author
agent/last-modified-date
agent/description
agent/event
agent/first-publish-date
agent/source
agent/weakness
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/glpi-project
canonical/glpi
version/glpi/0.83.2
version/glpi/0.5
version/glpi/0.5-rc1
version/glpi/0.5-rc2
version/glpi/0.6
version/glpi/0.6-rc1
version/glpi/0.6-rc2
version/glpi/0.6-rc3
version/glpi/0.20
version/glpi/0.21
version/glpi/0.30
version/glpi/0.31
version/glpi/0.40
version/glpi/0.41
version/glpi/0.42
version/glpi/0.51
version/glpi/0.51a
version/glpi/0.65
version/glpi/0.65-rc1
version/glpi/0.65-rc2
version/glpi/0.68
version/glpi/0.68-rc1
version/glpi/0.68-rc2
version/glpi/0.68-rc3
version/glpi/0.68.1
version/glpi/0.68.2
version/glpi/0.68.3
version/glpi/0.70
version/glpi/0.70-rc1
version/glpi/0.70-rc2
version/glpi/0.70-rc3
version/glpi/0.70.1
version/glpi/0.70.2
version/glpi/0.71
version/glpi/0.71.1
version/glpi/0.71.1-rc1
version/glpi/0.71.1-rc2
version/glpi/0.71.1-rc3
version/glpi/0.71.2
version/glpi/0.71.3
version/glpi/0.71.4
version/glpi/0.71.5
version/glpi/0.71.6
version/glpi/0.72
version/glpi/0.72-rc1
version/glpi/0.72-rc2
version/glpi/0.72-rc3
version/glpi/0.72.1
version/glpi/0.72.2
version/glpi/0.72.3
version/glpi/0.72.4
version/glpi/0.78
version/glpi/0.78.1
version/glpi/0.78.2
version/glpi/0.78.3
version/glpi/0.78.4
version/glpi/0.78.5
version/glpi/0.80
version/glpi/0.80.1
version/glpi/0.80.2
version/glpi/0.80.3
version/glpi/0.80.4
version/glpi/0.80.5
version/glpi/0.80.6
version/glpi/0.80.7
version/glpi/0.80.61
version/glpi/0.83
version/glpi/0.83.1