Vulnerability Details CVE-2008-5323
Cross-site scripting (XSS) vulnerability in index.php in Wysi Wiki Wyg 1.0 allows remote attackers to inject arbitrary web script or HTML via the s parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 80.9%
CVSS Severity
CVSS v2 Score 4.3
References
- http://packetstormsecurity.org/0810-exploits/wysiwikiwyg-lfixssdisclose.txt
- http://secunia.com/advisories/31061
- http://www.securityfocus.com/bid/31836
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45994
- https://www.exploit-db.com/exploits/6042
- http://packetstormsecurity.org/0810-exploits/wysiwikiwyg-lfixssdisclose.txt
- http://secunia.com/advisories/31061
- http://www.securityfocus.com/bid/31836
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45994
- https://www.exploit-db.com/exploits/6042
Products affected by CVE-2008-5323
-
cpe:2.3:a:easy-script:wysi_wiki_wyg:1.0