Lucene search

K
cvelistRedhatCVELIST:CVE-2008-5080
HistoryDec 03, 2008 - 6:00 p.m.

CVE-2008-5080

2008-12-0318:00:00
redhat
www.cve.org

5.6 Medium

AI Score

Confidence

High

0.518 Medium

EPSS

Percentile

97.6%

awstats.pl in AWStats 6.8 and earlier does not properly remove quote characters, which allows remote attackers to conduct cross-site scripting (XSS) attacks via the query_string parameter. NOTE: this issue exists because of an incomplete fix for CVE-2008-3714.

5.6 Medium

AI Score

Confidence

High

0.518 Medium

EPSS

Percentile

97.6%