Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-5757

Опубликовано: 30 дек. 2008
Источник: nvd
CVSS2: 3.5
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in textarea/index.php in Textpattern (aka Txp CMS) 4.0.6 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the Body parameter in an article action. NOTE: some of these details are obtained from third party information.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:textpattern:textpattern:*:*:*:*:*:*:*:*
Версия до 4.0.6 (включая)
cpe:2.3:a:textpattern:textpattern:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:textpattern:textpattern:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:textpattern:textpattern:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:textpattern:textpattern:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:textpattern:textpattern:4.0.5:*:*:*:*:*:*:*

EPSS

Процентиль: 43%
0.00209
Низкий

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2008-5757

ubuntu
почти 17 лет назад

Cross-site scripting (XSS) vulnerability in textarea/index.php in Textpattern (aka Txp CMS) 4.0.6 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the Body parameter in an article action. NOTE: some of these details are obtained from third party information.

debian логотип

CVE-2008-5757

debian
почти 17 лет назад

Cross-site scripting (XSS) vulnerability in textarea/index.php in Text ...

github логотип

GHSA-p58w-xvp4-pqvm

github
больше 3 лет назад

Cross-site scripting (XSS) vulnerability in textarea/index.php in Textpattern (aka Txp CMS) 4.0.6 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the Body parameter in an article action. NOTE: some of these details are obtained from third party information.

EPSS

Процентиль: 43%
0.00209
Низкий

3.5 Low

CVSS2

Дефекты

CWE-79