CVE-2008-0940

N/A

Descripcion

Cross-site scripting (XSS) vulnerability in Plain Black WebGUI before 7.4.24 allows remote attackers to inject arbitrary web script or HTML when creating a username, a different vulnerability than CVE-2007-0407.

Detalles CVE

Puntuacion CVSS v3.1N/A

Publicado2/25/2008

Ultima modificacion4/23/2026

Fuentenvd

Avistamientos honeypot0

Productos afectados

webgui:webgui

Debilidades (CWE)

CWE-79

Referencias

http://secunia.com/advisories/28967(cve@mitre.org)

http://www.plainblack.com/getwebgui/advisories/webgui-7_4_24-stable-released(cve@mitre.org)

http://www.securityfocus.com/bid/27869(cve@mitre.org)

http://secunia.com/advisories/28967(af854a3a-2127-422b-91ae-364da2661108)

http://www.plainblack.com/getwebgui/advisories/webgui-7_4_24-stable-released(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/27869(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.