Lucene search

K

MitreCVELIST:CVE-2008-5942

HistoryJan 22, 2009 - 11:00 a.m.

CVE-2008-5942

2009-01-2211:00:00

mitre

www.cve.org

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.7%

Multiple cross-site scripting (XSS) vulnerabilities in MODx before 0.9.6.3 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) the preserveUrls function and (2) “username input.” NOTE: vector 2 may be related to CVE-2008-5939.

References

jvn.jp/en/jp/JVN10170564/index.html

jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000003.html

svn.modxcms.com/svn/tattoo/tattoo/releases/0.9.6.3/install/changelog.txt

www.securityfocus.com/bid/33184

exchange.xforce.ibmcloud.com/vulnerabilities/48184

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.7%

Related for CVELIST:CVE-2008-5942

cve2 nvd2 prion2 cvelist1 jvn1