Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2973

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-2973
Last Modified 14 Apr 2009 01:33:08
Published 02 Jul 2008 01:14:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-2973

Summary

Multiple cross-site scripting (XSS) vulnerabilities in chathead.php in MM Chat 1.5 allow remote attackers to inject arbitrary web script or HTML via the (1) sitename and (2) wmessage parameters.

Vulnerable Systems

Application

  • Mm Chat 1.5


References

XF - mmchat-chathead-xss(43331)

BID - 29910

MILW0RM - 5919


Last Updated: 27 May 2016 10:48:02