CVE-2008-2181

2008-05-13T22:20:00
ID CVE-2008-2181
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:31:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in search.php in cpLinks 1.03 allow remote attackers to inject arbitrary web script or HTML via the (1) search_text and (2) search_category parameters. NOTE: the XSS reportedly occurs in a forced SQL error message. NOTE: some of these details are obtained from third party information.