Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7206

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-7206
Last Modified 20 Dec 2011 12:00:00
Published 11 Sep 2009 12:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-7206

Summary

Unspecified vulnerability in Electronic Logbook (ELOG) before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting (XSS).

Vulnerable Systems

Application

  • Stefan Ritt Elog Web Logbook 2.0.0

  • Stefan Ritt Elog Web Logbook 2.0.1

  • Stefan Ritt Elog Web Logbook 2.0.2

  • Stefan Ritt Elog Web Logbook 2.0.3

  • Stefan Ritt Elog Web Logbook 2.0.4

  • Stefan Ritt Elog Web Logbook 2.0.5

  • Stefan Ritt Elog Web Logbook 2.1.0

  • Stefan Ritt Elog Web Logbook 2.1.1

  • Stefan Ritt Elog Web Logbook 2.1.2

  • Stefan Ritt Elog Web Logbook 2.1.3

  • Stefan Ritt Elog Web Logbook 2.2.0

  • Stefan Ritt Elog Web Logbook 2.2.1

  • Stefan Ritt Elog Web Logbook 2.2.2

  • Stefan Ritt Elog Web Logbook 2.2.3

  • Stefan Ritt Elog Web Logbook 2.2.4

  • Stefan Ritt Elog Web Logbook 2.4

  • Stefan Ritt Elog Web Logbook 2.5

  • Stefan Ritt Elog Web Logbook 2.5.6

  • Stefan Ritt Elog Web Logbook 2.5.7

  • Stefan Ritt Elog Web Logbook 2.6.0

  • Stefan Ritt Elog Web Logbook 2.6.1

  • Stefan Ritt Elog Web Logbook 2.6.2

  • Stefan Ritt Elog Web Logbook 2.7.6


References

BID - 27526

CONFIRM - https://midas.psi.ch/elog/download/ChangeLog

XF - elog-logbook-xss(40124)

OSVDB - 41685


Last Updated: 27 May 2016 10:49:30