Vulnerability Details CVE-2008-3380
Cross-site scripting (XSS) vulnerability in ajaxp_backend.php in MyioSoft EasyBookMarker 4.0 trial edition (tr) allows remote attackers to inject arbitrary web script or HTML via the rs parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.038
EPSS Ranking 87.6%
CVSS Severity
CVSS v2 Score 4.3
References
- http://secunia.com/advisories/31191
- http://securityreason.com/securityalert/4072
- http://www.securityfocus.com/archive/1/494550/100/0/threaded
- http://www.securityfocus.com/bid/30304
- http://www.vupen.com/english/advisories/2008/2165/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43918
- http://secunia.com/advisories/31191
- http://securityreason.com/securityalert/4072
- http://www.securityfocus.com/archive/1/494550/100/0/threaded
- http://www.securityfocus.com/bid/30304
- http://www.vupen.com/english/advisories/2008/2165/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43918
Products affected by CVE-2008-3380
-
cpe:2.3:a:myiosoft:easybookmarker:4.0