Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-2852

Опубликовано: 25 июн. 2008
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in CGIWrap before 4.1, when an Internet Explorer based browser is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to failure to set the charset in error messages.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:nathan_neulinger:cgiwrap:3.5:*:*:*:*:*:*:*
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6:*:*:*:*:*:*:*
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.3:*:*:*:*:*:*:*
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.4:*:*:*:*:*:*:*
cpe:2.3:a:nathan_neulinger:cgiwrap:3.6.10:*:*:*:*:*:*:*
cpe:2.3:a:nathan_neulinger:cgiwrap:3.7:*:*:*:*:*:*:*
cpe:2.3:a:nathan_neulinger:cgiwrap:4.0:*:*:*:*:*:*:*

EPSS

Процентиль: 64%
0.00475
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2008-2852

ubuntu
больше 17 лет назад

Cross-site scripting (XSS) vulnerability in CGIWrap before 4.1, when an Internet Explorer based browser is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to failure to set the charset in error messages.

debian логотип

CVE-2008-2852

debian
больше 17 лет назад

Cross-site scripting (XSS) vulnerability in CGIWrap before 4.1, when a ...

github логотип

GHSA-9jgp-35qp-4rc3

github
почти 4 года назад

Cross-site scripting (XSS) vulnerability in CGIWrap before 4.1, when an Internet Explorer based browser is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to failure to set the charset in error messages.

EPSS

Процентиль: 64%
0.00475
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79