Unrated severityNVD Advisory· Published May 23, 2013· Updated Apr 29, 2026

CVE-2012-6559

Description

Multiple cross-site scripting (XSS) vulnerabilities in FreeNAC 3.02 allow remote attackers to inject arbitrary web script or HTML via the (1) comment, (2) mac, (3) graphtype, (4) name, or (5) type parameter to stats.php; or (6) comment parameter to deviceadd.php.

Affected products

Freenac/Freenac
cpe:2.3:a:freenac:freenac:3.0.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/53617nvdExploit
www.exploit-db.com/exploits/18900nvd
exchange.xforce.ibmcloud.com/vulnerabilities/75761nvd
exchange.xforce.ibmcloud.com/vulnerabilities/75762nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000