CVE-2008-1556

NONECVSS 0.0

0.0

Multiple cross-site scripting (XSS) vulnerabilities in BolinOS 4.6.1 allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter to (a) system/actionspages/_b/contentFiles/gBImageViewer.php, (2) ForEditor parameter to (b) system/actionspages/_b/contentFiles/gBselectorContents.php, (3) the PATH_INFO to (c) gBLoginPage.php and (d) gBPassword.php in system/actionspages/_b/contentFiles/, (4) formlogin parameter to system/actionspages/_b/contentFiles/gBLoginPage.php, and the (5) bolini_searchengine46Search parameter to (e) help/index.php.

🔗 References (12)

cve@mitrehttp://secunia.com/advisories/29535
cve@mitrehttp://securityreason.com/securityalert/3788
cve@mitrehttp://www.securityfocus.com/archive/1/490058/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/28445
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/41432
cve@mitrehttps://www.exploit-db.com/exploits/5309
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/29535
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/3788
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/490058/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/28445
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/41432
af854a3a-2127-422b-91ae-364da2661108https://www.exploit-db.com/exploits/5309

Is Your Infrastructure Affected by CVE-2008-1556?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-1556

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-1556?