CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-5584

Multiple cross-site scripting (XSS) vulnerabilities in ProjectPier 0.8 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) a message, (2) a milestone, or (3) a display name in a profile, or the (4) a or (5) c parameter to index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 82.2%

CVSS Severity

CVSS v2 Score 4.3

References

http://secunia.com/advisories/29016
http://securityreason.com/securityalert/4734
http://www.projectpier.org/node/679
http://www.securityfocus.com/archive/1/488294/100/200/threaded
http://www.securityfocus.com/bid/27857
http://secunia.com/advisories/29016
http://securityreason.com/securityalert/4734
http://www.projectpier.org/node/679
http://www.securityfocus.com/archive/1/488294/100/200/threaded
http://www.securityfocus.com/bid/27857

Products affected by CVE-2008-5584

Projectpier » Projectpier » Version: Any

cpe:2.3:a:projectpier:projectpier:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-5584

Products

Pricing

Contact Us