|
|
CVE Reference: CVE-2008-6631 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-6631 |
|
|
Description: Multiple cross-site scripting (XSS) vulnerabilities in index.php in BlogPHP 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) user parameter in a sendmessage action and the (2) username parameter when registering a new user, different vectors than CVE-2008-0679. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/42369 http://xforce.iss.net/xforce/xfdb/42370 SAID Secunia Advisory: SA30165 OSVDB 45038 MISC http://www.davidsopas.com/soapbox/blogphp.txt BID 29133 |
|
| Return to the previous page. |
