CVE-2008-4663

2008-10-2123:00:00

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.4%

JSON

Cross-site scripting (XSS) vulnerability in analysis.cgi 1.44, as used in K’s CGI Access Log Kaiseki (1) jcode.pl and (2) Jcode.pm, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

jvn.jp/en/jp/JVN46869708/index.html

jvn.jp/en/jp/JVN72065744/index.html

jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000043.html

jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000044.html

www.kumacchi.com/cgiroom/cgis/accesslogex/accesslogex.html

www.kumacchi.com/cgiroom/index.html

exchange.xforce.ibmcloud.com/vulnerabilities/46053