CVE Vulnerability

CVE-2008-3023

Cross-site scripting (XSS) vulnerability in FreeStyle Wiki 3.6.2 and earlier, and 3.6.3 dev3 and earlier development versions, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2005-1799.

4.3 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

Scope

References
Link Resource
http://jvn.jp/jp/JVN77432756/index.html Third Party Advisory
http://fswiki.org/wiki.pl?page=%CD%FA%CE%F2%2F2008%2D7%2D3 Broken Link
http://secunia.com/advisories/30923 Vendor Advisory
http://www.securityfocus.com/bid/30071 Third Party Advisory VDB Entry
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000036.html Third Party Advisory VDB Entry
http://jvn.jp/en/jp/JVN77432756/index.html Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/43574 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*
cpe:2.3:a:fswiki:freestyle_wiki:*:*:*:*:*:*:*:*
cpe:2.3:a:fswiki:freestyle_wiki:*:dev3:*:*:*:*:*:*
Information

Published : 2008-07-07 05:41

Updated : 2022-05-14 03:19

NVD link : CVE-2008-3023

Mitre link : CVE-2008-3023

Products Affected
No products.
CWE
CWE-79