| Vulnerability Name: | CVE-2008-3023 (CCN-43574) | ||||||||
| Assigned: | 2008-07-03 | ||||||||
| Published: | 2008-07-03 | ||||||||
| Updated: | 2022-05-14 | ||||||||
| Summary: | Cross-site scripting (XSS) vulnerability in FreeStyle Wiki 3.6.2 and earlier, and 3.6.3 dev3 and earlier development versions, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2005-1799. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
| ||||||||
| CVSS v2 Severity: | 4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N) 3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-79 | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2008-3023 Source: CCN Type: FreeStyleWiki Project Web site Information from FreeStyleWiki Project Source: CONFIRM Type: Broken Link http://fswiki.org/wiki.pl?page=%CD%FA%CE%F2%2F2008%2D7%2D3 Source: CCN Type: JVN#77432756 FreeStyleWiki Source: JVN Type: Third Party Advisory JVN#77432756 Source: MISC Type: Third Party Advisory http://jvn.jp/jp/JVN77432756/index.html Source: JVNDB Type: Third Party Advisory, VDB Entry JVNDB-2008-000036 Source: CCN Type: SA30923 FreeStyle Wiki Cross-Site Scripting Vulnerability Source: SECUNIA Type: Vendor Advisory 30923 Source: BID Type: Third Party Advisory, VDB Entry 30071 Source: CCN Type: BID-30071 FreeStyle Wiki Unspecified Cross Site Scripting Vulnerability Source: XF Type: Third Party Advisory, VDB Entry freestylewiki-unspecified-xss(43574) Source: XF Type: UNKNOWN freestylewiki-unspecified-xss(43574) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| BACK | |||||||||