Unrated severityNVD Advisory· Published Dec 22, 2010· Updated Apr 29, 2026

CVE-2010-4275

Description

Multiple cross-site scripting (XSS) vulnerabilities in Radius Manager 3.8.0 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) name or (2) descr parameter in an (a) update_usergroup or a (b) store_nas action to admin.php.

Affected products

Dmasoftlab/Radius Manager
cpe:2.3:a:dmasoftlab:radius_manager:3.8.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/45481nvdExploit
secunia.com/advisories/42364nvdVendor Advisory
www.exploit-db.com/exploits/15766nvd
exchange.xforce.ibmcloud.com/vulnerabilities/64199nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000