CVE-2008-6173

Опубликовано: 19 фев. 2009

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in fullscreen.php in ClipShare Pro 4.0 allows remote attackers to inject arbitrary web script or HTML via the title parameter.

Ссылки

http://downloads.securityfocus.com/vulnerabilities/exploits/31898.html
Exploit
http://secunia.com/advisories/32399
Vendor Advisory
http://www.securityfocus.com/bid/31898
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/46072
http://downloads.securityfocus.com/vulnerabilities/exploits/31898.html
Exploit
http://secunia.com/advisories/32399
Vendor Advisory
http://www.securityfocus.com/bid/31898
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/46072

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:clip-share:clipshare:4.0:-:pro:*:*:*:*:*

EPSS

Процентиль: 37%

0.00164

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-ffm6-99w7-ph6f

github

больше 3 лет назад