CVE-2008-2188

2008-05-1322:00:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

59.7%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in EJ3 BlackBook 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) bookCopyright and (2) ver parameters to (a) footer.php, and the (3) bookName, (4) bookMetaTags, and (5) estiloCSS parameters to (b) header.php.