CVE-2008-0522

Опубликовано: 31 янв. 2008

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in multiple Hal Networks shopping-cart products allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Ссылки

http://jvn.jp/jp/JVN%2301162446/index.html
http://secunia.com/advisories/28692
http://www.hal9800.com/home/bug/20080123.html
http://www.hal9800.com/home/bug/20080127.html
http://www.hal9800.com/home/bug/20080128.html
http://www.hal9800.com/home/bug/20080129.html
http://www.securityfocus.com/bid/27513
http://www.vupen.com/english/advisories/2008/0368
http://jvn.jp/jp/JVN%2301162446/index.html
http://secunia.com/advisories/28692
http://www.hal9800.com/home/bug/20080123.html
http://www.hal9800.com/home/bug/20080127.html
http://www.hal9800.com/home/bug/20080128.html
http://www.hal9800.com/home/bug/20080129.html
http://www.securityfocus.com/bid/27513
http://www.vupen.com/english/advisories/2008/0368

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hal_networks:perl__cgi_cart:*:*:*:*:*:*:*:*

cpe:2.3:a:hal_networks:php_cart:*:*:*:*:*:*:*:*

cpe:2.3:a:hal_networks:shop_hal_v1:*:*:*:*:*:*:*:*

EPSS

Процентиль: 65%

0.00503

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-jgxf-w4hm-5gmh

github

почти 4 года назад