CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Rsa: >> Webid >> 5.3 Security Vulnerabilities

CVE-2008-1470

Incomplete blacklist vulnerability in IISWebAgentIF.dll in the WebID RSA Authentication Agent 5.3, and possibly earlier, allows remote attackers to conduct cross-site scripting (XSS) attacks via the postdata parameter, due to an incomplete fix for CVE-2005-1118.

CVSS Score

4.3

EPSS Score

0.002

Published

2008-03-24

Page 1

Vulnerabilities

Vulnerable Software

Rsa: >> Webid >> 5.3 Security Vulnerabilities

Products

Pricing

Contact Us