CVE-2008-7147 in IntraLearninformazioni

Riassunto

di MITRE

Multiple cross-site scripting (XSS) vulnerabilities in IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allow remote attackers to inject arbitrary web script or HTML via the (1) outline and (2) course parameters to library/description_link.cfm, or the (3) records_to_display and (4) the_start parameters to library/courses_catalog.cfm.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

01/09/2009

Divulgazione

01/09/2009

Moderazione

accettato

Voce

VDB-49767

CPE

pronto

CWE

CWE-79 (confermato)

CVSS

4.3 (VulDB)

EPSS

0.01022

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-7147
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-7147
CVE Details	https://www.cvedetails.com/cve/CVE-2008-7147/

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!