Lucene search

K

MitreCVELIST:CVE-2008-4121

HistoryOct 21, 2008 - 4:00 p.m.

CVE-2008-4121

2008-10-2116:00:00

mitre

www.cve.org

1

AI Score

5.6

Confidence

High

EPSS

0.004

Percentile

74.1%

Multiple cross-site scripting (XSS) vulnerabilities in cpCommerce before 1.2.4 allow remote attackers to inject arbitrary web script or HTML via (1) the search parameter in a search.quick action to search.php and (2) the name parameter in a sendtofriend action to sendtofriend.php.

References

cpcommerce.cpradio.org/

secunia.com/advisories/32353

securityreason.com/securityalert/4448

www.datensalat.eu/~fabian/cve/CVE-2008-4121-cpcommerce.html

www.securityfocus.com/archive/1/497545/100/0/threaded

www.securityfocus.com/bid/31825

www.securitytracker.com/id?1021070

exchange.xforce.ibmcloud.com/vulnerabilities/45970

AI Score

5.6

Confidence

High

EPSS

0.004

Percentile

74.1%

Related for CVELIST:CVE-2008-4121

cve2 nvd2 securityvulns2 prion2 packetstorm1 cvelist1