Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3380

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-3380
Last Modified 07 Mar 2011 10:10:42
Published 30 Jul 2008 02:41:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-3380

Summary

Cross-site scripting (XSS) vulnerability in ajaxp_backend.php in MyioSoft EasyBookMarker 4.0 trial edition (tr) allows remote attackers to inject arbitrary web script or HTML via the rs parameter.

Vulnerable Systems

Application

  • Myiosoft Easybookmarker 4.0


References

XF - easybookmarker-ajaxpbackend-xss(43918)

VUPEN - ADV-2008-2165

BID - 30304

BUGTRAQ - 20080719 Easybookmarker 40tr Xss Vulnerability By Khashayar Fereidani

SREASON - 4072

SECUNIA - 31191


Last Updated: 27 May 2016 10:48:10