Cross-Site Scripting Vulnerability in Softpedia SiteXS CMS
CVE-2008-2046

Currently unrated

Key Information:

Vendor: Softpedia
Status: Sitexs Cms
Vendor: CVE Published:; 1 May 2008

What is CVE-2008-2046?

The SiteXS CMS version 0.1.1 Pre-Alpha contains a cross-site scripting (XSS) vulnerability in the index.php file, which enables attackers to execute arbitrary web scripts or inject HTML through the user parameter. This flaw poses a significant risk as it could allow malicious actors to manipulate user sessions, redirect users to malicious sites, or perform actions on behalf of unsuspecting users, compromising the security and integrity of affected web applications.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/42093

vdb-entryx_refsource_XF

http://marc.info/?l=bugtraq&m=120950161507846&w=2

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/28984

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 1, 2008
Vulnerability Reserved
May 1, 2008

CVE-2008-2046 Data

JSON