CVE-2008-2527

{"id": "CVE-2008-2527", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2008-06-03T15:32:00.000", "references": [{"url": "http://secunia.com/advisories/30205", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.majorsecurity.de/index_2.php?major_rls=major_rls52", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/491982/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/29177", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42367", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/30205", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.majorsecurity.de/index_2.php?major_rls=major_rls52", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/491982/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/29177", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42367", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in view.php in ActualScripts ActualAnalyzer Server 8.37 and earlier, ActualAnalyzer Gold 7.74 and earlier, ActualAnalyzer Pro 6.95 and earlier, and ActualAnalyzer Lite 2.78 and earlier allows remote attackers to inject arbitrary web script or HTML via the language parameter."}, {"lang": "es", "value": "Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en view.php de ActualScripts ActualAnalyzer Server 8.37 y versiones anteriores, ActualAnalyzer Gold 7.74 y versiones anteriores, ActualAnalyzer Pro 6.95 y versiones anteriores, y ActualAnalyzer Lite 2.78 permite a atacantes remotos inyectar web script o HTML de su elecci\u00f3n a trav\u00e9s del par\u00e1metro language."}], "lastModified": "2024-11-21T00:47:04.760", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84C4C0A4-C302-48FF-A846-798FB5F741B1"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CB150B0-6627-4885-8156-23FBEC90CC8D"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BF0D23B-EC1E-4283-B828-62518272264F"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9C2DEDB-1FC6-41B9-9B46-9250CE96A92B"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE990B6A-A462-4911-BABF-15BE06F11953"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "62239E3B-9683-47D6-9C6E-B258FCF0B5C7"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47D1914D-EAE7-41E0-8595-F3E411C2107F"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3EDDE8B2-272F-469E-93FB-521648C20923"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F131CE41-DF5B-4028-A569-12DCD83E84EA"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51EC963F-85B0-4AC6-B9F4-C5207ACC8ED4"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.41:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C351BD4-FD34-4163-8576-96AF03AD2FBF"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.42:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0FF13AF-94DA-45DC-9B02-2285D3D1A0A4"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.43:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80254CC7-2095-4DCA-89A8-79A165A06CC5"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CAA67108-D81C-4441-9430-79C6C809233A"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.61:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE9D366A-2FBB-4851-B3B4-F8A28BAAEDBD"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.62:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1414F9D-8BC9-4184-A4DF-D8F652FBA698"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.63:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63925B25-2D98-4C15-9551-43C08DAEFA46"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.64:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B170756-152F-41C6-B01C-43D47F27FC6B"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.71:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D008E5B-274F-4B48-9AC9-2E2D9D2D63C3"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.72:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F44D339C-A99B-4CF2-B33C-05332E920201"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.73:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6296CB47-CC05-4B19-B585-47B0B8CCBCEC"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.74:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A92292B9-190F-4739-B1A4-F698DC1A414B"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_lite:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1EB47481-B5E5-4A16-A1BB-AE54B9DAFCC0", "versionEndIncluding": "2.78"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_lite:2.77:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9891C9AE-4771-425B-BC69-DFD9DD1EC15D"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C4DE876-8E46-41B6-B5BC-486B1AB41BB7", "versionEndIncluding": "6.95"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.65:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8A4F891-6BC3-4CFB-85C0-16D517471003"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.67:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F1EE755-89E9-4A9C-936B-09FF21199242"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.68:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "943123CD-C7BE-4DAE-B15B-ED0C8AF3CE91"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.69:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0ADEEE15-3B3D-4F02-AC08-F0225BC4796F"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.71:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03A7A0AA-146D-4E46-B91E-8A0F834C8389"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.72:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A69A1D73-13CB-4CA3-A9B0-E3FEEF7169A6"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.73:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B97B37AE-B7E4-4BC7-9416-D81B597A6570"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.81:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE522273-5E82-4F3D-8444-27120CFB5AC3"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.82:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AAAE21ED-FA96-4C1D-B4B5-A53A6E0A5DBA"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.83:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2C66F75-D9A7-4D0A-BE6A-43794E2216A5"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.85:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F840ACB-2135-476C-A3FE-0E47DA783CDD"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.86:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBA5B7B0-4FF8-4A0B-B3DA-4A18B2F9737E"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.87:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4FA123C-F306-493E-8654-6F1DCAC13FA7"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.88:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B1169E4-2D5D-4E97-BA4D-324CF22E3537"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.89:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0EE9EA11-CAB9-40F7-9370-52EBCC899688"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8544DE68-4397-4896-960B-A165CEC0BCEE"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.92:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "030F6DFE-435A-4336-B109-3B852885B765"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.93:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "369D9B53-A0AB-4BD4-B999-3F101F9DDAA3"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.94:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E1A3DE1-2A1C-4B01-B54B-96B20624C796"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D31537A-343E-49AC-B899-81BEEC4DA33B", "versionEndIncluding": "8.37"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.02:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D93B9A5-8ECA-48E5-83FC-8BC18A9DEFF3"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D780330E-6E98-4B68-AA8C-DFD2F3A69DB8"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7C13DAD-D135-4726-8B69-3E8C484F4E26"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4C2839D-ED01-4D74-B4CC-193096F4380F"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBF44AC0-C254-4530-8DAD-A3CB751D7715"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2749EFC0-CA16-4E4C-B874-DE1F3736F713"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC10445F-6106-412F-B8B5-3780C31CCDDF"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A2D684F-851B-4FD1-8722-B8D838853DBE"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E6D9E30-ED22-4F1C-AABB-3C4C996AA8AB"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED190E87-D032-4924-93D1-F8136BACC62D"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5782A31-64CE-448C-9330-8EFF35BF6476"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D74B64ED-F2D6-4456-9063-1E4DCD6E1F3D"}, {"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.36:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB220C92-1132-4A3B-83B7-20047C8D4054"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}