4 matches found
CVE-2008-3100
Cross-site scripting XSS vulnerability in lib/owl.lib.php in Steve Bourgeois and Chris Vincent Owl Intranet Knowledgebase 0.95 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter in a getpasswd action to register.php...
CVE-2008-3100
The CVE-2008-3100 issue affects Owl Intranet Knowledgebase/Engine (
Cross Site Scripting (XSS) in Owl <=0.95, CVE-2008-3100
Cross Site Scripting XSS in Owl =0.95, CVE-2008-3100 References: https://vulners.com/cve/CVE-2008-3100 http://owl.sourceforge.net/ http://www.datensalat.eu/fabian/cve/CVE-2008-3100-Owl.html Description: Owl is a multi user document repository knowledgebase system for publishing files/documents on...
owl-xss.txt
Cross Site Scripting XSS in Owl alert1; Workaround/Fix: Replace your owl.lib.php with the version from http://owl.cvs.sourceforge.net/checkout/owl/owl-0.90/lib/owl.lib.php Disclosure Timeline: 2008-07-27 Vendor contacted 2008-07-28 Vendor: fixed issue in cvs / no need for new stable release...