NVD

Id
6962  
Name
CVE-2008-7231  
Description
Cross-site scripting (XSS) vulnerability in Meridio Document and Records Management before 4.3 SR1 allows remote authenticated users to inject arbitrary web script or HTML via the Title field in a (1) document (subGeneralProps:dmpvDocTitle:PROP_W_title) or (2) container (subGeneralProps:dmpvContainerTitle:PROP_W_title).  
Reject
 
CVSS Version
2  
CVSS Score
3.5  
Severity
Low  
CVSS Base Score
3.5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:N/I:P/A:N)  
Pub Date
2017-01-03  
Published
2009-09-14  
Modified Date
2009-09-15  
Seq
2008-7231  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
39328 6962 CVE-2008-7231 http://labs.mwrinfosecurity.com/advisories/meridio_cross_site_scripting_vulnerability/  View
39329 6962 CVE-2008-7231 http://labs.mwrinfosecurity.com/files/Advisories/mwri_meridio-advisory-embedded-xss_2008-01-15.pdf  View
39330 6962 CVE-2008-7231 27721  View
39331 6962 CVE-2008-7231 documentsandrecordsmanagement-title-xss(40422)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
43391 JVNDB-2009-004398 Meridio Document などにおけるクロスサイトスクリプティングの脆弱性 Meridio Document および Records Management には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2008-7231 37344 CVE-2008-7231 6962 3.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-004398.html 2009-09-14 2012-09-25 View