Lucene search

[email protected]NVD:CVE-2008-0522

HistoryJan 31, 2008 - 8:00 p.m.

CVE-2008-0522

2008-01-3120:00:00

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

68.4%

JSON

Cross-site scripting (XSS) vulnerability in multiple Hal Networks shopping-cart products allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected configurations

Nvd

Node

hal_networksperl__cgi_cart

hal_networksphp_cart

hal_networksshop_hal_v1

VendorProductVersionCPE
hal_networksperl__cgi_cart*cpe:2.3:a:hal_networks:perl__cgi_cart:*:*:*:*:*:*:*:*
hal_networksphp_cart*cpe:2.3:a:hal_networks:php_cart:*:*:*:*:*:*:*:*
hal_networksshop_hal_v1*cpe:2.3:a:hal_networks:shop_hal_v1:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hal_networks	perl__cgi_cart	*	cpe:2.3:a:hal_networks:perl__cgi_cart::::::::
hal_networks	php_cart	*	cpe:2.3:a:hal_networks:php_cart::::::::
hal_networks	shop_hal_v1	*	cpe:2.3:a:hal_networks:shop_hal_v1::::::::

References

jvn.jp/jp/JVN%2301162446/index.html

secunia.com/advisories/28692

www.hal9800.com/home/bug/20080123.html

www.hal9800.com/home/bug/20080127.html

www.hal9800.com/home/bug/20080128.html

www.hal9800.com/home/bug/20080129.html

www.securityfocus.com/bid/27513

www.vupen.com/english/advisories/2008/0368

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

68.4%

JSON

Related for NVD:CVE-2008-0522

cvelist1 cve1 prion1