Lucene search
HistoryFeb 03, 2009 - 11:30 a.m.
CVE-2008-6034
cve-2008-6034
cross-site scripting
xss
vulnerability
achievo 1.3.2
remote attackers
5.7 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
54.4%
Cross-site scripting (XSS) vulnerability in dispatch.php in Achievo 1.3.2 allows remote attackers to inject arbitrary web script or HTML via the atkaction parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected configurations
Node
achievoachievoMatch1.3.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| achievo:achievo | achievo | eq | 1.3.2 |
Related
cvelist
cvelist
CVE-2008-6034
2009-02-03 11:00:00
prion
prion
Cross site scripting
2009-02-03 11:30:00
nvd
nvd
CVE-2008-6034
2009-02-03 11:30:00
5.7 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
54.4%
Related for CVE-2008-6034