CVE-2008-0239

NONECVSS 0.0

0.0

Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Identity Manager 6.0 SP1 through SP3, 7.0, and 7.1 allow remote attackers to inject arbitrary HTML or web script via the (1) cntry or lang parameters to /idm/login.jsp, (2) resultsForm parameter to /idm/account/findForSelect.jsp, or (3) activeControl parameter to /idm/user/main.jsp.

🔗 References (32)

cve@mitrehttp://secunia.com/advisories/28356
cve@mitrehttp://securityreason.com/securityalert/3535
cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-26-103180-1
cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-66-200558-1
cve@mitrehttp://www.procheckup.com/Vulnerability_PR07-06.php
cve@mitrehttp://www.procheckup.com/Vulnerability_PR07-07.php
cve@mitrehttp://www.procheckup.com/Vulnerability_PR07-08.php
cve@mitrehttp://www.procheckup.com/Vulnerability_PR07-09.php
cve@mitrehttp://www.securityfocus.com/archive/1/486076/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/27214
cve@mitrehttp://www.securitytracker.com/id?1019175
cve@mitrehttp://www.vupen.com/english/advisories/2008/0089
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/39580
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/39581
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/39582

Is Your Infrastructure Affected by CVE-2008-0239?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-0239

📅 Published

🔄 Last Modified

🔗 References (32)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-0239?