Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6359

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-6359
Last Modified 22 Jul 2009 12:00:00
Published 02 Mar 2009 11:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-6359

Summary

Cross-site scripting (XSS) vulnerability in index.php in Max's Guestbook allows remote attackers to inject arbitrary web script or HTML via the (1) name, (2) email, and (3) message parameters.

Vulnerable Systems

Application

  • Phpf1 Max%27s Guestbook -


References

XF - maxsguestbook-index-xss(47250)

BID - 32763

BUGTRAQ - 20081210 Max's Guestbook (XSS) Remote Vulnerability

SECUNIA - 33106

OSVDB - 50654


Last Updated: 27 May 2016 10:49:10