2 matches found
CVE-2008-4898
Cross-site scripting XSS vulnerability in planetluc RateMe 1.3.3 allows remote attackers to inject arbitrary web script or HTML via the rate parameter in a submit rate action...
CVE-2008-4898
CVE-2008-4898 describes an XSS vulnerability in planetluc RateMe 1.3.3 where an attacker can inject arbitrary web script or HTML by supplying a crafted rate parameter in a submit rate action. The affected software is planetluc RateMe 1.3.3; input handling in the rate parameter is the root cause. ...