CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-4379

Cross-site scripting (XSS) vulnerability in report.php in Mr. CGI Guy Hot Links SQL-PHP 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.031

EPSS Ranking 86.4%

CVSS Severity

CVSS v2 Score 4.3

References

http://securityreason.com/securityalert/4336
https://exchange.xforce.ibmcloud.com/vulnerabilities/44992
https://www.exploit-db.com/exploits/6403
http://securityreason.com/securityalert/4336
https://exchange.xforce.ibmcloud.com/vulnerabilities/44992
https://www.exploit-db.com/exploits/6403

Products affected by CVE-2008-4379

Mr. Cgi Guy » Hot Links Sql Php » Version: Any

cpe:2.3:a:mr._cgi_guy:hot_links_sql_php:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-4379

Products

Pricing

Contact Us