CVE-2008-5214

2008-11-2417:00:00

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.4%

JSON

Cross-site scripting (XSS) vulnerability in service/calendrier.php in ClanLite 2.2006.05.20 allows remote attackers to inject arbitrary web script or HTML via the annee parameter.

References

securityreason.com/securityalert/4628

www.securityfocus.com/bid/29156

exchange.xforce.ibmcloud.com/vulnerabilities/42331

www.exploit-db.com/exploits/5595