CVE-2008-3596 Information
Feb 14, 2021
cve
Description
Cross-site scripting (XSS) vulnerability in Harmoni before 1.4.7 allows remote attackers to inject arbitrary web script or HTML via the Username field which is inserted into logs that could be rendered when viewed by an administrator.
Reference
http://secunia.com/advisories/31406 http://sourceforge.net/tracker/index.php?func=detail&aid=2040255&group_id=82171&atid=1098812 http://www.securityfocus.com/bid/30637 https://exchange.xforce.ibmcloud.com/vulnerabilities/44394
Share on: