CVE-2008-2210

2008-05-1417:00:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.003

Percentile

68.2%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Maian Support 1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) msg_script, (2) msg_script2, and (3) msg_script3 parameters to admin/inc/footer.php; and the (4) msg_script2 parameter to admin/inc/header.php.