Lucene search
MitreCVE-2008-0867HistoryFeb 21, 2008 - 1:44 a.m.
CVE-2008-0867
2008-02-2101:44:00
CWE-79
mitre
web.nvd.nist.gov
24
cve
2008
0867
cross-site scripting
xss
vulnerability
bea aqualogic interaction
web script
html
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.005
Percentile
75.6%
Cross-site scripting (XSS) vulnerability in portal/server.pt in BEA AquaLogic Interaction 6.1 through MP1 and Plumtree Foundation 6.0 through SP1 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
Affected configurations
Node
bea_systemsaqualogic_interactionMatch6.1
ORbea_systemsaqualogic_interactionMatch6.1mp1
ORbea_systemsplumtree_foundationMatch6.0
ORbea_systemsplumtree_foundationMatch6.0sp1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bea_systems | aqualogic_interaction | 6.1 | cpe:2.3:a:bea_systems:aqualogic_interaction:6.1:*:*:*:*:*:*:* |
| bea_systems | aqualogic_interaction | 6.1 | cpe:2.3:a:bea_systems:aqualogic_interaction:6.1:mp1:*:*:*:*:*:* |
| bea_systems | plumtree_foundation | 6.0 | cpe:2.3:a:bea_systems:plumtree_foundation:6.0:*:*:*:*:*:*:* |
| bea_systems | plumtree_foundation | 6.0 | cpe:2.3:a:bea_systems:plumtree_foundation:6.0:sp1:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-0867
2008-02-21 01:00:00
nvd
nvd
CVE-2008-0867
2008-02-21 01:44:00
prion
prion
Cross site scripting
2008-02-21 01:44:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.005
Percentile
75.6%
Related for CVE-2008-0867