Lucene search
Ubuntu.comUB:CVE-2008-5814HistoryJan 02, 2009 - 12:00 a.m.
CVE-2008-5814
2009-01-0200:00:00
ubuntu.com
ubuntu.com
8
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
70.2%
Cross-site scripting (XSS) vulnerability in PHP, possibly 5.2.7 and
earlier, when display_errors is enabled, allows remote attackers to inject
arbitrary web script or HTML via unspecified vectors. NOTE: because of the
lack of details, it is unclear whether this is related to CVE-2006-0208.
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | verified 5.2.10.dfsg.1-1ubuntu1 in 9.10 is not affected by looking at the source package |
Related
cve
cve
CVE-2008-5814
2009-01-02 18:11:00
CVE-2006-0208
2006-01-13 23:03:00
prion
prion
Cross site scripting
2009-01-02 18:11:00
Cross site scripting
2006-01-13 23:03:00
openvas
openvas
SLES9: Security update for PHP4
2009-10-10 00:00:00
SLES9: Security update for PHP4
2009-10-10 00:00:00
PHP display_errors XSS Vulnerability
2009-01-08 00:00:00
nessus
nessus
PHP < 4.4.2 Multiple XSS Vulnerabilities
2011-11-18 00:00:00
Ubuntu 4.10 / 5.04 / 5.10 : php4, php5 vulnerabilities (USN-261-1)
2006-03-13 00:00:00
GLSA-200603-22 : PHP: Format string and XSS vulnerabilities
2006-03-23 00:00:00
ubuntucve
ubuntucve
CVE-2006-0208
2006-01-13 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-10 00:31:24
jvn
jvn
JVN#50327700 PHP vulnerable to cross-site scripting
2008-12-19 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2006-03-10 00:00:00
PHP vulnerabilities
2009-04-27 00:00:00
PHP vulnerabilities
2009-04-20 00:00:00
gentoo
gentoo
PHP: Format string and XSS vulnerabilities
2006-03-22 00:00:00
PHP: Multiple vulnerabilities
2010-01-05 00:00:00
securityvulns
securityvulns
HP System Management Homepage crossite scripting
2010-02-04 00:00:00
centos
centos
php security update
2006-04-25 15:25:25
php security update
2009-04-07 12:21:16
php security update
2006-05-24 01:13:50
redhat
redhat
(RHSA-2006:0276) php security update
2006-04-25 00:00:00
(RHSA-2009:0338) Moderate: php security update
2009-04-06 00:00:00
(RHSA-2006:0501) php security update
2006-05-23 00:00:00
oraclelinux
oraclelinux
php security update
2009-04-06 00:00:00
osv
osv
php5 - several vulnerabilities
2009-05-04 00:00:00
debian
debian
[SECURITY] [DSA 1789-1] New php5 packages fix several vulnerabilities
2009-05-04 20:57:57
fedora
fedora
[SECURITY] Fedora 10 Update: php-5.2.9-2.fc10
2009-05-30 02:34:40
[SECURITY] Fedora 9 Update: php-5.2.9-2.fc9
2009-05-30 02:38:47
[SECURITY] Fedora 10 Update: maniadrive-1.2-13.fc10
2009-05-30 02:34:40
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
70.2%
Related for UB:CVE-2008-5814