CVE-2008-6144 in WEC Discussion Foruminformation

Résumé

par MITRE

Multiple cross-site scripting (XSS) vulnerabilities in the WEC Discussion Forum (wec_discussion) extension 1.7.0 and earlier for TYPO3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-3029.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!