Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0284

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-0284
Last Modified 15 Sep 2009 01:10:48
Published 15 Jan 2008 04:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0284

Summary

Cross-site scripting (XSS) vulnerability in Simple Machines Forum (SMF) 1.1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) Itemid or (2) topic arguments.

Vulnerable Systems

Application

  • Simple Machines Smf 1.1.4


References

XF - simplemachinesforum-itemid-xss(39585)

BID - 27218

BUGTRAQ - 20080110 Simple Machines Forum Cross-Site Scripting Vulnerabilities

SREASON - 3540


Last Updated: 27 May 2016 10:46:44