ByteOS Network

NVD Vulnerability Details :

CVE-2008-4083

Modified

Source-cve@mitre.org

Published At-15 Sep, 2008 | 17:12

Updated At-29 Sep, 2017 | 01:31

Cross-site scripting (XSS) vulnerability in the Bookmarks plugin in Brim 2.0 allows remote authenticated users to inject arbitrary web script or HTML via the name parameter in an addItemPost action to index.php. NOTE: some of these details are obtained from third party information.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	3.5	LOW	AV:N/AC:M/Au:S/C:N/I:P/A:N

Type: Primary

Version: 2.0

Base score: 3.5

Base severity: LOW

Vector:

AV:N/AC:M/Au:S/C:N/I:P/A:N

CPE Matches

brim-project>>brim>>2.0.0

cpe:2.3:a:brim-project:brim:2.0.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-79	Primary	nvd@nist.gov

CWE ID: CWE-79

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://secunia.com/advisories/31661	cve@mitre.org	Vendor Advisory
http://securityreason.com/securityalert/4251	cve@mitre.org	N/A
http://www.securityfocus.com/bid/30944	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/44790	cve@mitre.org	N/A
https://www.exploit-db.com/exploits/6332	cve@mitre.org	N/A