CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-1985

Cross-site scripting (XSS) vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 46.1%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/28918
http://www.z0rlu.ownspace.org/index.php?/archives/65-hive-v2.RC2-XSS.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/42006
http://www.securityfocus.com/bid/28918
http://www.z0rlu.ownspace.org/index.php?/archives/65-hive-v2.RC2-XSS.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/42006

Products affected by CVE-2008-1985

Digital Hive » Digitalhive » Version: 2.0

cpe:2.3:a:digital_hive:digitalhive:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-1985

Products

Pricing

Contact Us