Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3505

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-3505
Last Modified 14 Apr 2009 01:34:30
Published 06 Aug 2008 02:41:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-3505

Summary

Cross-site scripting (XSS) vulnerability in PolyPager 1.0 rc2 and earlier allows remote attackers to inject arbitrary web script or HTML via the nr parameter to the default URI.

Vulnerable Systems

Application

  • Polypager 0.9.4

  • Polypager 0.9.51

  • Polypager 0.9.6

  • Polypager 0.9.7

  • Polypager 0.9.8

  • Polypager 0.9.9

  • Polypager 1.0


References

XF - polypager-nr-xss(43372)

BID - 29975

MILW0RM - 5941

SREASON - 4116


Last Updated: 27 May 2016 10:48:12