CVE

Id
34038  
CVE No.
CVE-2008-3921  
Status
Candidate  
Description
Multiple cross-site scripting (XSS) vulnerabilities in AWStats Totals 1.0 through 1.14 allow remote attackers to inject arbitrary web script or HTML via the (1) month and (2) year parameter.  
Phase
Assigned (20080904)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
371870 34038 CVE-2008-3921 BUGTRAQ:20080826 Multiple Vulnerabilities in AWStats Totals  View
371871 34038 CVE-2008-3921 URL:http://www.securityfocus.com/archive/1/archive/1/495770/100/0/threaded  View
371872 34038 CVE-2008-3921 MISC:http://userwww.service.emory.edu/~ekenda2/EMORY-2008-01.txt  View
371873 34038 CVE-2008-3921 CONFIRM:http://www.telartis.nl/xcms/awstats/  View
371874 34038 CVE-2008-3921 VUPEN:ADV-2008-2442  View
371875 34038 CVE-2008-3921 URL:http://www.vupen.com/english/advisories/2008/2442  View
371876 34038 CVE-2008-3921 SECUNIA:31630  View
371877 34038 CVE-2008-3921 URL:http://secunia.com/advisories/31630  View
371878 34038 CVE-2008-3921 SREASON:4218  View
371879 34038 CVE-2008-3921 URL:http://securityreason.com/securityalert/4218  View
371880 34038 CVE-2008-3921 XF:awstatstotals-unspecified-xss(44706)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
49515 JVNDB-2008-004825 CMME の admin.php におけるクロスサイトリクエストフォージェリの脆弱性 Content Management Made Easy (CMME) の admin.php には、クロスサイトリクエストフォージェリの脆弱性が存在します。 CVE-2008-3925 34038 4.3 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-004825.html  View