Lucene search
HistoryMar 25, 2008 - 11:44 p.m.
CVE-2008-1510
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.5 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
59.7%
Cross-site scripting (XSS) vulnerability in system/workplace/admin/accounts/users_list.jsp in Alkacon OpenCMS 7.0.3 allows remote attackers to inject arbitrary web script or HTML via the (1) searchfilter or (2) listSearchFilter parameter.
Affected configurations
Node
alkaconopencmsMatch7.0.3
Related
cve
cve
CVE-2008-1510
2008-03-25 23:44:00
CVE-2008-1753
2008-04-11 21:05:00
packetstorm
packetstorm
alkaconsessions-xss.txt
2008-04-08 00:00:00
cvelist
cvelist
CVE-2008-1510
2008-03-25 23:00:00
CVE-2008-1753
2008-04-11 20:28:00
securityvulns
securityvulns
Alkacon OpenCms sessions.jsp searchfilter XSS
2008-04-05 00:00:00
prion
prion
Cross site scripting
2008-03-25 23:44:00
Cross site scripting
2008-04-11 21:05:00
nvd
nvd
CVE-2008-1753
2008-04-11 21:05:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.5 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
59.7%
Related for NVD:CVE-2008-1510