Lucene search
HistoryJul 24, 2009 - 4:30 p.m.
CVE-2009-2588
cve-2009-2588
xss
hotscripts
php clone script
security vulnerability
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
79.2%
Multiple cross-site scripting (XSS) vulnerabilities in Hotscripts Type PHP Clone Script allow remote attackers to inject arbitrary web script or HTML via the msg parameter to (1) feedback.php, (2) index.php, and (3) lostpassword.php.
Affected configurations
Node
resalecodehotscripts_type_php_clone_scriptMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| resalecode:hotscripts_type_php_clone_script | resalecode hotscripts type php clone script | eq | - |
Related
prion
prion
Cross site scripting
2009-07-24 16:30:00
cvelist
cvelist
CVE-2009-2588
2009-07-24 16:00:00
nvd
nvd
CVE-2009-2588
2009-07-24 16:30:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
79.2%
Related for CVE-2009-2588