CVE-2008-7220

Unspecified vulnerability in Prototype JavaScript framework (prototypejs) before 1.6.0.2 allows attackers to make "cross-site ajax requests" via unknown vectors.

🔗 References (40)

• cve@mitrehttp://github.com/sstephenson/prototype/blob/master/CHANGELOG
• cve@mitrehttp://osvdb.org/46312
• cve@mitrehttp://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html
• cve@mitrehttp://seclists.org/fulldisclosure/2019/May/10
• cve@mitrehttp://seclists.org/fulldisclosure/2019/May/11
• cve@mitrehttp://seclists.org/fulldisclosure/2019/May/13
• cve@mitrehttp://secunia.com/advisories/37479
• cve@mitrehttp://secunia.com/advisories/37677
• cve@mitrehttp://www.debian.org/security/2009/dsa-1952
• cve@mitrehttp://www.openwall.com/lists/oss-security/2009/11/07/2
• cve@mitrehttps://bugzilla.redhat.com/show_bug.cgi?id=523277
• cve@mitrehttps://bugzilla.redhat.com/show_bug.cgi?id=533137
• cve@mitrehttps://lists.apache.org/thread.html/2ad48cd9d47edd0e677082eb869115809473a117e1e30b52fb511590%40%3Cissues.zookeeper.apache.org%3E
• cve@mitrehttps://lists.apache.org/thread.html/6d1b9a75a004dab42c81e8aa149d90e6fd26ce8cd6d71295e565e366%40%3Cissues.zookeeper.apache.org%3E
• cve@mitrehttps://lists.apache.org/thread.html/769fcc5f331b61c4d7ce16b807678e9a1799628d0146322e14aa24ed%40%3Cdev.zookeeper.apache.org%3E