CVE-2008-3505

Cross-site scripting (XSS) vulnerability in PolyPager 1.0 rc2 and earlier allows remote attackers to inject arbitrary web script or HTML via the nr parameter to the default URI.

Link	Resource
http://securityreason.com/securityalert/4116
http://www.securityfocus.com/bid/29975
https://exchange.xforce.ibmcloud.com/vulnerabilities/43372
https://www.exploit-db.com/exploits/5941

Configuration 1

cpe:2.3:a:polypager:polypager:0.9.7:*:*:*:*:*:*:* cpe:2.3:a:polypager:polypager:*:rc2:*:*:*:*:*:* cpe:2.3:a:polypager:polypager:0.9.4:*:*:*:*:*:*:* cpe:2.3:a:polypager:polypager:0.9.8:*:*:*:*:*:*:* cpe:2.3:a:polypager:polypager:0.9.9:*:*:*:*:*:*:* cpe:2.3:a:polypager:polypager:1.0:*:*:*:*:*:*:* cpe:2.3:a:polypager:polypager:0.9.51:*:*:*:*:*:*:* cpe:2.3:a:polypager:polypager:0.9.6:*:*:*:*:*:*:* cpe:2.3:a:polypager:polypager:1.0:rc1:*:*:*:*:*:*

---

Published : 2008-08-06 06:41

Updated : 2017-09-29 01:31

---

NVD link : CVE-2008-3505

Mitre link : CVE-2008-3505

No products.

CWE-79