Lucene search

[email protected]CVE-2008-6087

HistoryFeb 06, 2009 - 7:30 p.m.

CVE-2008-6087

2009-02-0619:30:00

CWE-79

[email protected]

web.nvd.nist.gov

cve-2008-6087

xss

web script injection

html injection

topic.php

camera life

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

60.2%

JSON

Cross-site scripting (XSS) vulnerability in topic.php in Camera Life 2.6.2b4 allows remote attackers to inject arbitrary web script or HTML via the name parameter.

Affected configurations

NVD

Node

camera_lifecamera_lifeMatch2.6.2b4

CPENameOperatorVersion
camera_life:camera_lifecamera lifeeq2.6.2b4

CPE	Name	Operator	Version
camera_life:camera_life	camera life	eq	2.6.2b4

References

sourceforge.net/project/shownotes.php?group_id=70910&release_id=643552

www.securityfocus.com/bid/31689

exchange.xforce.ibmcloud.com/vulnerabilities/45805

www.exploit-db.com/exploits/6710

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

60.2%

JSON

Related for CVE-2008-6087

prion1 cvelist1 nvd1