Cross-Site Scripting Vulnerability in ITechBids 7.0 Gold
CVE-2008-3237

Currently unrated

Key Information:

Vendor: Itechscripts
Status: Itechbids
Vendor: CVE Published:; 21 July 2008

🔔 Create Itechscripts Vulnerability Alert

What is CVE-2008-3237?

A notable vulnerability exists in the ITechBids 7.0 Gold application that allows remote attackers to execute malicious scripts through the productid parameter in the forward_to_friend.php file. This security issue can lead to unauthorized access and manipulation of user sessions, enabling attackers to exploit affected systems. It is crucial for users and administrators to apply the necessary security measures to mitigate this risk.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/43758

vdb-entryx_refsource_XF

http://securityreason.com/securityalert/4015

third-party-advisoryx_refsource_SREASON

http://secunia.com/advisories/31084

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 21, 2008
Vulnerability Reserved
Jul 21, 2008