CVE-2017-20185

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2017-20185
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-20185.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-20185
Published
2023-06-06T02:15:09.473Z
Modified
2026-03-15T22:17:29.108337Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Fuzzy SWMP. It has been rated as problematic. This issue affects some unknown processing of the file swmp.php of the component GET Parameter Handler. The manipulation of the argument theme leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The identifier of the patch is 792bcab637cb8c3bd251d8fc8771512c5329a93e. It is recommended to apply a patch to fix this issue. The identifier VDB-230669 was assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

References

Affected packages

Git / github.com/fuzzymannerz/swmp

Affected ranges

Type
GIT
Repo
https://github.com/fuzzymannerz/swmp
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
792bcab637cb8c3bd251d8fc8771512c5329a93e
Type
GIT
Repo
https://github.com/fuzzymannerz/swmp
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
792bcab637cb8c3bd251d8fc8771512c5329a93e

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-20185.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "fixed": "2017-05-26"
            }
        ]
    }
]