TROYANOSYVIRUS
Back to CVEs

CVE-2008-5814

N/A

Description

Cross-site scripting (XSS) vulnerability in PHP, possibly 5.2.7 and earlier, when display_errors is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: because of the lack of details, it is unclear whether this is related to CVE-2006-0208.

CVE Details

CVSS v3.1 ScoreN/A
Published1/2/2009
Last Modified4/23/2026
Sourcenvd
Honeypot Sightings0

Affected Products

php:php

Weaknesses (CWE)

CWE-79

References

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444(cve@mitre.org)
http://jvn.jp/en/jp/JVN50327700/index.html(cve@mitre.org)
http://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-000084.html(cve@mitre.org)
http://marc.info/?l=bugtraq&m=124277349419254&w=2(cve@mitre.org)
http://secunia.com/advisories/34830(cve@mitre.org)
http://secunia.com/advisories/34933(cve@mitre.org)
http://secunia.com/advisories/35003(cve@mitre.org)
http://secunia.com/advisories/35007(cve@mitre.org)
http://secunia.com/advisories/35108(cve@mitre.org)
http://www.debian.org/security/2009/dsa-1789(cve@mitre.org)
http://www.redhat.com/support/errata/RHSA-2009-0350.html(cve@mitre.org)
http://www.ubuntu.com/usn/USN-761-2(cve@mitre.org)
http://www.vupen.com/english/advisories/2009/1338(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/47496(cve@mitre.org)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10501(cve@mitre.org)
https://usn.ubuntu.com/761-1/(cve@mitre.org)
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444(af854a3a-2127-422b-91ae-364da2661108)
http://jvn.jp/en/jp/JVN50327700/index.html(af854a3a-2127-422b-91ae-364da2661108)
http://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-000084.html(af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=124277349419254&w=2(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34830(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34933(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/35003(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/35007(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/35108(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2009/dsa-1789(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2009-0350.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-761-2(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/1338(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/47496(af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10501(af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/761-1/(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.