Cross-Site Scripting Vulnerabilities in WORK System E-commerce by WORK Systeme
CVE-2008-1839

Currently unrated

Key Information:

Vendor: Work System E-commerce
Status: Work System E-commerce
Vendor: CVE Published:; 16 April 2008

🔔 Create Work System E-commerce Vulnerability Alert

What is CVE-2008-1839?

The WORK System E-commerce 4.0.9 is susceptible to multiple cross-site scripting (XSS) vulnerabilities, allowing remote attackers to inject arbitrary web scripts or HTML through the day, month, and year parameters in module/main.php. This could lead to various attacks, including data theft and unauthorized actions performed on behalf of users.

References

http://secunia.com/advisories/29823

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/28785

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/41811

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 16, 2008
Vulnerability Reserved
Apr 16, 2008

CVE-2008-1839 Data

JSON