Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3559

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-3559
Last Modified 18 Mar 2009 01:40:43
Published 08 Aug 2008 03:41:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-3559

Summary

Multiple cross-site scripting (XSS) vulnerabilities in KAPhotoservice allow remote attackers to inject arbitrary web script or HTML via the (1) filename parameter to search.asp and the (2) page parameter to order.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems

Application

  • Kaphotoservice


References

XF - kaphotoservice-search-order-xss(44271)

BID - 30567

SECUNIA - 31369

MISC - http://downloads.securityfocus.com/vulnerabilities/exploits/30567.html


Last Updated: 27 May 2016 10:48:14