CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-0092

Cross-site scripting (XSS) vulnerability in index.php in the search module in Appalachian State University phpWebSite 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.044

EPSS Ranking 88.5%

CVSS Severity

CVSS v2 Score 4.3

References

http://phpwebsite.appstate.edu/blog/2143
http://secunia.com/advisories/28303
http://securityreason.com/securityalert/3511
http://www.securityfocus.com/archive/1/485704/100/0/threaded
http://www.securityfocus.com/bid/27090
https://exchange.xforce.ibmcloud.com/vulnerabilities/39391
http://phpwebsite.appstate.edu/blog/2143
http://secunia.com/advisories/28303
http://securityreason.com/securityalert/3511
http://www.securityfocus.com/archive/1/485704/100/0/threaded
http://www.securityfocus.com/bid/27090
https://exchange.xforce.ibmcloud.com/vulnerabilities/39391

Products affected by CVE-2008-0092

Phpwebsite » Phpwebsite » Version: 1.4.0

cpe:2.3:a:phpwebsite:phpwebsite:1.4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-0092

Products

Pricing

Contact Us