{"id":"CVE-2016-10216","details":"An issue was discovered in IT ITems DataBase (ITDB) through 1.23. The vulnerability exists due to insufficient filtration of user-supplied data in the \"value\" HTTP POST parameter passed to the \"itdb-1.23/js/DataTables-1.8.2/examples/examples_support/editable_ajax.php\" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.","modified":"2026-07-08T12:35:30.683065Z","published":"2017-02-10T07:59:00.183Z","references":[{"type":"EVIDENCE","url":"https://github.com/sivann/itdb/issues/56"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/sivann/itdb","events":[{"introduced":"0"},{"last_affected":"b38ff4e16052a8b682f1c9860ea07d83ccdcfdf4"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"last_affected":"1.23"}],"cpe":"cpe:2.3:a:sivann:it_items_database:*:*:*:*:*:*:*:*","source":"CPE_RANGE"}}],"versions":["1.23","1.22","1.21","1.20","1.19","1.18","1.17","1.16","1.15","1.14","1.13","1.12","1.10","v1.9","v1.8","v1.7","v1.6"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-10216.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}