Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4751

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-4751
Last Modified 07 Mar 2011 10:13:13
Published 27 Oct 2008 04:00:04
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4751

Summary

Cross-site scripting (XSS) vulnerability in index.php in iPei Guestbook 2.0 allows remote attackers to inject arbitrary web script or HTML via the pg parameter, a different vector than CVE-2005-4597.

Vulnerable Systems

Application

  • Epistream Ipei Guestbook 2.0


References

XF - ipeiguestbook-pg-xss(46111)

VUPEN - ADV-2008-2920

BID - 31911

BUGTRAQ - 20081023 iPei cross site scripting Vulnerablity

SREASON - 4510

SECUNIA - 32429

MISC - http://packetstormsecurity.org/0810-exploits/ipei-xss.txt


Last Updated: 27 May 2016 10:48:36