Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCertccCVELIST:CVE-2008-0179
HistoryFeb 04, 2008 - 11:00 p.m.

CVE-2008-0179

2008-02-0423:00:00
certcc
www.cve.org
4
cross-site scripting
user-agent header
html injection
forgot password
liferay portal

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

69.8%

JSON

Cross-site scripting (XSS) vulnerability in service/impl/UserLocalServiceImpl.java in Liferay Portal 4.3.6 allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header, which is used when composing Forgot Password e-mail messages in HTML format.

Related

cve 1
prion 1
cert 1
nvd 1
cve
cve
CVE-2008-0179
2008-02-05 00:00:00
prion
prion
Cross site scripting
2008-02-05 00:00:00
cert
cert
Liferay Portal Forgot Password User-Agent HTTP header XSS
2008-01-31 00:00:00
nvd
nvd
CVE-2008-0179
2008-02-05 00:00:00

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

69.8%

JSON
Related for CVELIST:CVE-2008-0179
cve1prion1cert1nvd1