Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7117


Vulnerability Score 5.0 5.0
CVE Id CVE-2008-7117
Last Modified 28 Aug 2009 12:00:00
Published 28 Aug 2009 11:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



eledicss.php in WeBid auction script 0.5.4 allows remote attackers to modify arbitrary cascading style sheets (CSS) files via a certain request with the file parameter set to style.css. NOTE: this can probably be leveraged for cross-site scripting (XSS) attacks.

Vulnerable Systems


  • Webidsupport Webid 0.5.4


XF - webid-eledicss-file-manipulation(44822)

BID - 30945

MILW0RM - 6339

Last Updated: 27 May 2016 10:49:28