Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4432

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-4432
Last Modified 06 Oct 2008 12:00:00
Published 03 Oct 2008 06:22:45
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4432

Summary

Cross-site scripting (XSS) vulnerability in search.php in the RMSOFT MiniShop module 1.0 for Xoops allows remote attackers to inject arbitrary web script or HTML via the itemsxpag parameter.

Vulnerable Systems

Application

  • Rmsoft Minishop Module 1.0


References

XF - minishop-search-xss(44374)

BID - 30616

MISC - http://lostmon.blogspot.com/2008/08/rmsoft-minishop-module-multiple.html


Last Updated: 27 May 2016 10:48:30