Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2008-7271
HistoryJan 13, 2011 - 12:00 a.m.

CVE-2008-7271

2011-01-1300:00:00
ubuntu.com
ubuntu.com
11

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.521 Medium

EPSS

Percentile

97.6%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents
web application (aka the Help Server) in Eclipse IDE, possibly 3.3.2, allow
remote attackers to inject arbitrary web script or HTML via (1) the
searchWord parameter to help/advanced/searchView.jsp or (2) the workingSet
parameter in an add action to help/advanced/workingSetManager.jsp, a
different issue than CVE-2010-4647.

Bugs

Notes

Author Note
sbeattie fixed upstream in 3.4

Related

nvd 2
cvelist 2
nessus 7
prion 2
cve 2
debiancve 2
openvas 7
oraclelinux 1
ubuntucve 1
veracode 1
redhat 1
ibm 1
nvd
nvd
CVE-2008-7271
2011-01-13 19:00:01
CVE-2010-4647
2011-01-13 19:00:04
cvelist
cvelist
CVE-2008-7271
2022-10-03 16:13:53
CVE-2010-4647
2011-01-13 18:35:00
nessus
nessus
RHEL 5 : eclipse (Unpatched Vulnerability)
2024-06-03 00:00:00
Fedora 13 : eclipse-3.5.2-4.fc13 (2010-18990)
2010-12-26 00:00:00
Oracle Linux 6 : eclipse (ELSA-2011-0568)
2023-09-07 00:00:00
prion
prion
Cross site scripting
2011-01-13 19:00:00
Cross site scripting
2011-01-13 19:00:00
cve
cve
CVE-2008-7271
2022-10-03 16:13:53
CVE-2010-4647
2011-01-13 19:00:04
debiancve
debiancve
CVE-2008-7271
2011-01-13 19:00:00
CVE-2010-4647
2011-01-13 19:00:00
openvas
openvas
Eclipse IDE < 3.6.2 Help Contents Multiple XSS Vulnerabilities
2011-02-17 00:00:00
Mandriva Update for eclipse MDVSA-2011:032 (eclipse)
2011-02-22 00:00:00
Mandriva Update for eclipse MDVSA-2011:032 (eclipse)
2011-02-22 00:00:00
oraclelinux
oraclelinux
eclipse security, bug fix, and enhancement update
2011-05-28 00:00:00
ubuntucve
ubuntucve
CVE-2010-4647
2011-01-13 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2020-04-10 01:01:25
redhat
redhat
(RHSA-2011:0568) Low: eclipse security, bug fix, and enhancement update
2011-05-19 00:00:00
ibm
ibm
Security Bulletin: Multiple security vulnerabilities in IBM Sales Center for WebSphere Commerce (CVE-2008-7271, CVE-2010-4647, CVE-2012-0186, CVE-2012-0191, CVE-2012-2159, CVE-2012-2161)
2022-09-26 05:45:55

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.521 Medium

EPSS

Percentile

97.6%

JSON
Related for UB:CVE-2008-7271
nvd2cvelist2nessus7prion2cve2debiancve2openvas7oraclelinux1ubuntucve1veracode1redhat1ibm1