Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2008-0359

Published: 18/01/2008 Updated: 19/10/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Blog Cms

Vulnerability Summary

Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS 4.2.1b allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) admin.php or (2) index.php in photo/.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

blog cms blog cms 4.2.1_c

Exploits

Exploit DB: Blog:CMS 4.2.1b - SQL Injection / Cross-Site Scripting
Digital Security Research Group [DSecRG] Advisory #DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 421b Vendor URL: blogcmscom/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15012008 ...

References

CWE-79http://marc.info/?l=bugtraq&m=120049816924383&w=2http://blogcms.com/wiki/changeloghttp://www.securityfocus.com/bid/27317http://secunia.com/advisories/28523https://exchange.xforce.ibmcloud.com/vulnerabilities/39710https://www.exploit-db.com/exploits/4919https://nvd.nist.govhttps://www.exploit-db.com/exploits/4919/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook