Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6215

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-6215
Last Modified 27 Apr 2010 01:45:23
Published 20 Feb 2009 12:30:03
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-6215

Summary

Cross-site scripting (XSS) vulnerability in cadena_ofertas_ext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote attackers to inject arbitrary web script or HTML via the OfertaID parameter.

Vulnerable Systems

Application

  • Bookingcentre Booking System For Hotels Group -


References

XF - bookingcentre-cadenaofertasext-xss(46225)

BID - 31990

MILW0RM - 6876

SECUNIA - 32430

OSVDB - 49447


Last Updated: 27 May 2016 10:49:06