2 matches found
CVE-2008-2508
This CVE concerns a Cross-site Scripting (XSS) vulnerability in the News module of Tr Script News 2.1. The affected component is news.php, where the attacker can inject arbitrary web script or HTML through the nb parameter in voir mode. The issue arises from unsanitized input being reflected in t...
CVE-2008-2508
Cross-site scripting XSS vulnerability in news.php in Tr Script News 2.1 allows remote attackers to inject arbitrary web script or HTML via the "nb" parameter in voir mode...