QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2008-4876

Back to search

CVE-2008-4876

Published: Oct 31, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the web server component in Philips Electronics VOIP841 DECT Phone with firmware 1.0.4.50 and 1.0.4.80 allows remote attackers to inject arbitrary web script or HTML via the request URL, which is not properly handled in a 404 web error page.

VendorProductVersions

n/a

n/a

affected
n/a

References

5113
exploit
x_refsource_EXPLOIT-DB
28978
third-party-advisory
x_refsource_SECUNIA
27790
vdb-entry
x_refsource_BID
ADV-2008-0583
vdb-entry
x_refsource_VUPEN
4536
third-party-advisory
x_refsource_SREASON

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now