CVE-2008-3100

2008-07-29T18:41:00
ID CVE-2008-3100
Type cve
Reporter cve@mitre.org
Modified 2018-10-11T20:45:00

Description

Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in Steve Bourgeois and Chris Vincent Owl Intranet Knowledgebase 0.95 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter in a getpasswd action to register.php.