CVE-2008-1604

Опубликовано: 01 апр. 2008

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in PerlMailer before 3.02 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Ссылки

http://cgi.din.or.jp/~hideyuki/cgi-bin/diary-s/perldiary-s.cgi
http://jvn.jp/jp/JVN%2376669770/index.html
http://jvndb.jvn.jp/contents/ja/2008/JVNDB-2008-000019.html
http://secunia.com/advisories/29517
Vendor Advisory
http://www.securityfocus.com/bid/28472
https://exchange.xforce.ibmcloud.com/vulnerabilities/41491
http://cgi.din.or.jp/~hideyuki/cgi-bin/diary-s/perldiary-s.cgi
http://jvn.jp/jp/JVN%2376669770/index.html
http://jvndb.jvn.jp/contents/ja/2008/JVNDB-2008-000019.html
http://secunia.com/advisories/29517
Vendor Advisory
http://www.securityfocus.com/bid/28472
https://exchange.xforce.ibmcloud.com/vulnerabilities/41491

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:perlmailer:perlmailer:*:*:*:*:*:*:*:*

Версия до 3.01 (включая)

EPSS

Процентиль: 64%

0.00475

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-jmvq-hqjp-c8hx

github

почти 4 года назад