NVD

Id
4358  
Name
CVE-2008-4535  
Description
Cross-site scripting (XSS) vulnerability in EC-CUBE Ver2 2.1.2a and earlier, EC-CUBE Ver2 Beta(RC) 2.2.0-beta and earlier, and EC-CUBE Community Edition Nighly-Build r17623 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-4536 and CVE-2008-4537.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-03  
Published
2008-10-10  
Modified Date
2009-01-10  
Seq
2008-4535  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
27513 4358 CVE-2008-4535 JVN#99916563  View
27514 4358 CVE-2008-4535 JVNDB-2008-000064  View
27515 4358 CVE-2008-4535 http://www.ec-cube.net/release/detail.php?release_id=193  View
27516 4358 CVE-2008-4535 31509  View
27517 4358 CVE-2008-4535 eccube-multiple-unspecified-xss(45591)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
45671 JVNDB-2008-000064 EC-CUBE におけるクロスサイトスクリプティングの脆弱性 株式会社ロックオンが提供する EC-CUBE には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2008-4535 34648 CVE-2008-4535 4358 4.3 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000064.html 2008-10-01 2009-08-25 View