Lucene search
HistoryOct 01, 2008 - 3:38 p.m.
CVE-2008-4379
cve-2008-4379
cross-site scripting
xss
vulnerability
report.php
mr. cgi guy
hot links sql-php 3.0
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.7 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.7%
Cross-site scripting (XSS) vulnerability in report.php in Mr. CGI Guy Hot Links SQL-PHP 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter.
Affected configurations
Node
mr._cgi_guyhot_links_sql_phpRange≤3.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| mr._cgi_guy:hot_links_sql_php | mr. cgi guy hot links sql php | le | 3.0 |
Related
nvd
nvd
CVE-2008-4379
2008-10-01 15:38:36
cvelist
cvelist
CVE-2008-4379
2008-10-01 15:00:00
prion
prion
Cross site scripting
2008-10-01 15:38:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.7 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.7%
Related for CVE-2008-4379