2 matches found
CVE-2008-3180
Multiple cross-site scripting XSS vulnerabilities in upload/file/languagemenu.php in ContentNow CMS 1.4.1 allow remote attackers to inject arbitrary web script or HTML via the 1 pageid parameter or 2 PATHINFO...
CVE-2008-3180
CVE-2008-3180 affects ContentNow CMS 1.4.1. The vulnerability is described as multiple cross-site scripting (XSS) flaws in upload/file/language_menu.php, exploitable via the (1) pageid parameter or (2) PATH_INFO. The NVD entry lists a base CVSS v2 score of 4.3 (MEDIUM) with network attack vector,...