QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2008-6666

Back to search

CVE-2008-6666

Published: Apr 8, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in Kronos webTA allow remote attackers to inject arbitrary web script or HTML via the description field to (1) servlet/com.threeis.webta.H710selProject and (2) servlet/com.threeis.webta.H720editProjectInfo. NOTE: BID:29610 states that the initial report was incorrect, but the reason for this conclusion is unknown.

VendorProductVersions

n/a

n/a

affected
n/a

References

30588
third-party-advisory
x_refsource_SECUNIA
46207
vdb-entry
x_refsource_OSVDB
29610
vdb-entry
x_refsource_BID
webta-comthreeiswebta-xss(43056)
vdb-entry
x_refsource_XF
46208
vdb-entry
x_refsource_OSVDB
20080609 webTA by kronos - XSS
mailing-list
x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now