Lucene search
MitreCVE-2008-5193HistoryNov 21, 2008 - 5:30 p.m.
CVE-2008-5193
2008-11-2117:30:00
CWE-79
mitre
web.nvd.nist.gov
31
xss
cross-site scripting
cve-2008-5193
w1l3d4 philboard 1.14
w1l3d4 philboard 1.2
remote attackers
searchterms parameter
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.003
Percentile
65.5%
Cross-site scripting (XSS) vulnerability in search.asp in W1L3D4 Philboard 1.14 and 1.2 allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter. NOTE: this might overlap CVE-2007-4024.
Affected configurations
Node
philboardphilboardMatch1.2
ORphilboardphilboardMatch1.14
Related
cvelist
cvelist
CVE-2008-5193
2008-11-21 17:00:00
CVE-2007-4024
2007-07-26 19:00:00
prion
prion
Cross site scripting
2008-11-21 17:30:00
Cross site scripting
2007-07-26 19:30:00
nvd
nvd
CVE-2008-5193
2008-11-21 17:30:00
CVE-2007-4024
2007-07-26 19:30:00
exploitdb
exploitdb
W1L3D4 philboard 1.2 - Blind SQL Injection / Cross-Site Scripting
2008-06-27 00:00:00
W1L3D4 philboard 0.3 - Cross-Site Scripting
2007-07-25 00:00:00
cve
cve
CVE-2007-4024
2007-07-26 19:30:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.003
Percentile
65.5%
Related for CVE-2008-5193