CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-4089

Cross-site scripting (XSS) vulnerability in print.php in myPHPNuke (MPN) before 1.8.8_8rc2 allows remote attackers to inject arbitrary web script or HTML via the sid parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.3%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/30942
http://www.securityfocus.com/bid/31112
http://www.securityfocus.com/bid/31114
https://www.exploit-db.com/exploits/6338
http://www.securityfocus.com/bid/30942
http://www.securityfocus.com/bid/31112
http://www.securityfocus.com/bid/31114
https://www.exploit-db.com/exploits/6338

Products affected by CVE-2008-4089

Myphpnuke » Myphpnuke » Version: Any

cpe:2.3:a:myphpnuke:myphpnuke:*
Myphpnuke » Myphpnuke » Version: 1.8.8_7

cpe:2.3:a:myphpnuke:myphpnuke:1.8.8_7
Myphpnuke » Myphpnuke » Version: 1.8.8_8

cpe:2.3:a:myphpnuke:myphpnuke:1.8.8_8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-4089

Products

Pricing

Contact Us