CVE-2008-3886 (dotProject) |
|
| BugsAlert Home > CVE-2008-3886 (dotProject) | |
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in dotProject 2.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the inactive parameter in a tasks action, (2) the date parameter in a calendar day_view action, (3) the callback parameter in a public calendar action, or (4) the type parameter in a ticketsmith action. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3886 Learn more about CVE-2008-3886 (dotProject) |
|
| Tags: cve-2008-3886 dotproject | |
Related Items |
|
|
CVE-2008-2292 (Net-SNMP)
|
|
|
CVE-2008-0888 (rPath Linux)
|
|
|
CVE-2008-4899 (rateme)
|
|
|
CVE-2007-6097 (Ingate Firewall, Ingate SIParator)
|
|
|
FrSIRT - phpArcadeScript "cat" Parameter Remote SQL Injection Vulnerability
|
|
|
FrSIRT - Apache mod_jk2 Host Header Multiple Buffer Overflow Vulnerabilities
|
|
|
Fedora 8 Update: rsyslog-1.19.11-3.fc8
|
|
