CVE-2008-1800 – DivXDB 2002 0.94b - Multiple Cross-Site Scripting Vulnerabilities

https://notcve.org/view.php?id=CVE-2008-1800

Multiple cross-site scripting (XSS) vulnerabilities in index.php in DivXDB 2002 0.94b allow remote attackers to inject arbitrary web script or HTML via the (1) choice, (2) _page_, (3) zone_admin, (4) general_search, and (5) import parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en index.php de DivXDB 2002 0.94b permite a atacantes remotos inyectar web script o HTML de su elección a través de los parámetros (1) choice, (2) _page_, (3) zone_admin, (4) general_search, y (5) import. NOTA: la procedencia de esta información es desconocida; los detalles han sido obtenidos sólamente a partir de la información de terceros. • https://www.exploit-db.com/exploits/31590 http://www.securityfocus.com/bid/28566 https://exchange.xforce.ibmcloud.com/vulnerabilities/41634 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •