Lucene search
Ubuntu.comUB:CVE-2008-3219HistoryJul 18, 2008 - 12:00 a.m.
CVE-2008-3219
2008-07-1800:00:00
ubuntu.com
ubuntu.com
11
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.003
Percentile
65.8%
The Drupal filter_xss_admin function in 5.x before 5.8 and 6.x before 6.3
does not “prevent use of the object HTML tag in administrator input,” which
has unknown impact and attack vectors, probably related to an insufficient
cross-site scripting (XSS) protection mechanism.
Related
cvelist
cvelist
CVE-2008-3219
2008-07-18 16:00:00
cve
cve
CVE-2008-3219
2008-07-18 16:41:00
nvd
nvd
CVE-2008-3219
2008-07-18 16:41:00
prion
prion
Cross site scripting
2008-07-18 16:41:00
openvas
openvas
Fedora Update for drupal FEDORA-2008-6415
2009-02-17 00:00:00
Fedora Update for drupal FEDORA-2008-6411
2009-02-17 00:00:00
Fedora Update for drupal FEDORA-2008-6411
2009-02-17 00:00:00
nessus
nessus
Fedora 8 : drupal-5.9-1.fc8 (2008-6916)
2008-08-01 00:00:00
Fedora 9 : drupal-6.3-1.fc9 (2008-6415)
2008-07-16 00:00:00
Fedora 8 : drupal-5.8-1.fc8 (2008-6411)
2008-07-16 00:00:00
redhatcve
redhatcve
CVE-2008-3218
2019-10-04 20:14:23
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.003
Percentile
65.8%
Related for UB:CVE-2008-3219