CVE-2008-1048
The CVE-2008-1048 entry describes a Cross-site scripting (XSS) vulnerability in Plume CMS 1.2.2, specifically in manager/xmedia.php where the dir parameter can be exploited to inject arbitrary web script or HTML. Affected software: Plume CMS 1.2.2 (component: manager/xmedia.php). Underlying cause...