Back to search
CVE-2008-0723
Published: Feb 12, 2008
Modified: Sep 17, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in mynews.inc.php in MyNews 1.6.4, and other earlier 1.6.x versions, allows remote attackers to inject arbitrary web script or HTML via the hash parameter in an admin action to index.php, a different vulnerability than CVE-2006-2208.1.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
27652
vdb-entry
x_refsource_BID
20080207 Re: MyNews 1.6.X HTML/JS Injection Vulnerability
mailing-list
x_refsource_FULLDISC
20080206 MyNews 1.6.X HTML/JS Injection Vulnerability
mailing-list
x_refsource_FULLDISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now