Multiple cross-site scripting (XSS) vulnerabilities in ASP Forum Script allow remote attackers to inject arbitrary web script or HTML via the (1) forum_id parameter to (a) new_message.asp and (b) messages.asp, and the (2) query string to default.asp.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2009-08-03T14:00:00
Updated: 2024-08-07T11:49:02.691Z
Reserved: 2009-08-03T00:00:00
Link: CVE-2008-6891
Vulnrichment
No data.
NVD
Status : Modified
Published: 2009-08-03T14:30:00.593
Modified: 2024-11-21T00:57:44.030
Link: CVE-2008-6891
Redhat
No data.