Lucene search

MitreCVELIST:CVE-2008-1174

HistoryMar 06, 2008 - 12:00 a.m.

CVE-2008-1174

2008-03-0600:00:00

mitre

www.cve.org

cve-2008-1174

cross-site scripting

edituser.asp

authentix 6.3b1 trial

remote attackers

web script

html

username parameter

AI Score

5.6

Confidence

High

EPSS

0.002

Percentile

55.7%

JSON

Cross-site scripting (XSS) vulnerability in editUser.asp in AuthentiX 6.3b1 Trial allows remote attackers to inject arbitrary web script or HTML via the username parameter.

References

marc.info/?l=full-disclosure&m=120410229721185&w=2

secunia.com/advisories/29142

securitytracker.com/id?1019520

www.securityfocus.com/bid/28040