Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
jvnJapan Vulnerability NotesJVN:18616622
HistorySep 10, 2008 - 12:00 a.m.

JVN#18616622 Multiple Tor World CGI scripts vulnerable to arbitrary script execution

2008-09-1000:00:00
Japan Vulnerability Notes
jvn.jp
14

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

65.6%

JSON

Tor World provides CGI scripts for implementing search engines, message boards, and other tools. Multiple Tor World CGI scripts contain a vulnerability which may allow an attacker to inject an arbitrary script into the web page which is generated by the affected product.

This vulnerability is different from JVN#54593414.

Impact

An arbitrary script may be executed on the user’s web browser.

Solution

Update the Software
Apply the latest updates provided by the vendor.

Products Affected

  • Simple BBS Ver1.86 and earlier
  • Interactive BBS Ver1.57 and earlier
  • Topics BBS Ver1.11 and earlier
  • Tor Board Ver1.3 and earlier

Related

nvd 1
cve 1
prion 1
cvelist 1
nvd
nvd
CVE-2008-4076
2008-09-15 15:14:07
cve
cve
CVE-2008-4076
2008-09-15 15:14:07
prion
prion
Cross site scripting
2008-09-15 15:14:00
cvelist
cvelist
CVE-2008-4076
2008-09-15 15:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

65.6%

JSON
Related for JVN:18616622
nvd1cve1prion1cvelist1