CVE-2008-1468

Cross-site scripting (XSS) vulnerability in namazu.cgi in Namazu before 2.0.18 allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded input, related to failure to set the charset, a different vector than CVE-2004-1318 and CVE-2001-1350. NOTE: some of these details are obtained from third party information.
Configurations

Configuration 1

cpe:2.3:a:namazu:namazu:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:namazu:namazu:2.0.13:*:*:*:*:*:*:*
cpe:2.3:a:namazu:namazu:2.0.14:*:*:*:*:*:*:*
cpe:2.3:a:namazu:namazu:*:*:*:*:*:*:*:*
cpe:2.3:a:namazu:namazu:2.0:*:*:*:*:*:*:*
cpe:2.3:a:namazu:namazu:2.0.16:*:*:*:*:*:*:*
cpe:2.3:a:namazu:namazu:2.0.15:*:*:*:*:*:*:*
cpe:2.3:a:namazu:namazu:1.3.0.11:*:*:*:*:*:*:*
cpe:2.3:a:namazu:namazu:2.0.12:*:*:*:*:*:*:*

Information

Published : 2008-03-24 09:44

Updated : 2017-08-08 01:30


NVD link : CVE-2008-1468

Mitre link : CVE-2008-1468

Products Affected
No products.
CWE