NVD

Id
3574  
Name
CVE-2008-3709  
Description
Multiple cross-site scripting (XSS) vulnerabilities in CyBoards PHP Lite 1.21 allow remote attackers to inject arbitrary web script or HTML via the (1) lOptionsOptions, (2) lNavAdminOptions, or (3) lNavReturn parameter to options.php; or the (4) lNavReturn parameter to subscribe.php.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-03  
Published
2008-08-19  
Modified Date
2008-09-05  
Seq
2008-3709  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
22643 3574 CVE-2008-3709 http://packetstormsecurity.org/0808-exploits/cyboards-rfilfixss.txt  View
22644 3574 CVE-2008-3709 20080819 CyBoards PHP uncertainties (RFI/path traversal)  View
22645 3574 CVE-2008-3709 30688  View
22646 3574 CVE-2008-3709 cyboardsphplite-options-subscribe-xss(44476)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
49457 JVNDB-2008-004767 CyBoards PHP Lite におけるクロスサイトスクリプティングの脆弱性 CyBoards PHP Lite には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2008-3709 33822 CVE-2008-3709 3574 4.3 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-004767.html 2008-08-19 2012-09-25 View