CVE-2008-6848

2009-07-0718:35:00

mitre

www.cve.org

5.6 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.8%

JSON

Cross-site scripting (XSS) vulnerability in index.php in phpGreetCards 3.7 allows remote attackers to inject arbitrary web script or HTML via the category parameter in a select action.

References

osvdb.org/50989

secunia.com/advisories/33304

www.securityfocus.com/bid/33001

www.vupen.com/english/advisories/2008/3510

exchange.xforce.ibmcloud.com/vulnerabilities/47590

www.exploit-db.com/exploits/7561