CVE-2008-2527
Published Jun 3, 2008
Last updated 6 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in view.php in ActualScripts ActualAnalyzer Server 8.37 and earlier, ActualAnalyzer Gold 7.74 and earlier, ActualAnalyzer Pro 6.95 and earlier, and ActualAnalyzer Lite 2.78 and earlier allows remote attackers to inject arbitrary web script or HTML via the language parameter.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "84C4C0A4-C302-48FF-A846-798FB5F741B1"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9CB150B0-6627-4885-8156-23FBEC90CC8D"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.23:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6BF0D23B-EC1E-4283-B828-62518272264F"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.24:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A9C2DEDB-1FC6-41B9-9B46-9250CE96A92B"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.25:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EE990B6A-A462-4911-BABF-15BE06F11953"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.31:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "62239E3B-9683-47D6-9C6E-B258FCF0B5C7"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.32:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "47D1914D-EAE7-41E0-8595-F3E411C2107F"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.33:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3EDDE8B2-272F-469E-93FB-521648C20923"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.34:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F131CE41-DF5B-4028-A569-12DCD83E84EA"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.35:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "51EC963F-85B0-4AC6-B9F4-C5207ACC8ED4"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.41:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3C351BD4-FD34-4163-8576-96AF03AD2FBF"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.42:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D0FF13AF-94DA-45DC-9B02-2285D3D1A0A4"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.43:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "80254CC7-2095-4DCA-89A8-79A165A06CC5"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.51:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CAA67108-D81C-4441-9430-79C6C809233A"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.61:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE9D366A-2FBB-4851-B3B4-F8A28BAAEDBD"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.62:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C1414F9D-8BC9-4184-A4DF-D8F652FBA698"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.63:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "63925B25-2D98-4C15-9551-43C08DAEFA46"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.64:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B170756-152F-41C6-B01C-43D47F27FC6B"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.71:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D008E5B-274F-4B48-9AC9-2E2D9D2D63C3"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.72:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F44D339C-A99B-4CF2-B33C-05332E920201"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.73:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6296CB47-CC05-4B19-B585-47B0B8CCBCEC"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.74:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A92292B9-190F-4739-B1A4-F698DC1A414B"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_lite:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1EB47481-B5E5-4A16-A1BB-AE54B9DAFCC0",
"versionEndIncluding": "2.78"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_lite:2.77:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9891C9AE-4771-425B-BC69-DFD9DD1EC15D"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C4DE876-8E46-41B6-B5BC-486B1AB41BB7",
"versionEndIncluding": "6.95"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.65:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B8A4F891-6BC3-4CFB-85C0-16D517471003"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.67:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1F1EE755-89E9-4A9C-936B-09FF21199242"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.68:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "943123CD-C7BE-4DAE-B15B-ED0C8AF3CE91"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.69:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0ADEEE15-3B3D-4F02-AC08-F0225BC4796F"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.71:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "03A7A0AA-146D-4E46-B91E-8A0F834C8389"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.72:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A69A1D73-13CB-4CA3-A9B0-E3FEEF7169A6"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.73:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B97B37AE-B7E4-4BC7-9416-D81B597A6570"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.81:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AE522273-5E82-4F3D-8444-27120CFB5AC3"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.82:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AAAE21ED-FA96-4C1D-B4B5-A53A6E0A5DBA"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.83:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A2C66F75-D9A7-4D0A-BE6A-43794E2216A5"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.85:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8F840ACB-2135-476C-A3FE-0E47DA783CDD"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.86:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CBA5B7B0-4FF8-4A0B-B3DA-4A18B2F9737E"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.87:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4FA123C-F306-493E-8654-6F1DCAC13FA7"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.88:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1B1169E4-2D5D-4E97-BA4D-324CF22E3537"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.89:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0EE9EA11-CAB9-40F7-9370-52EBCC899688"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.91:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8544DE68-4397-4896-960B-A165CEC0BCEE"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.92:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "030F6DFE-435A-4336-B109-3B852885B765"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.93:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "369D9B53-A0AB-4BD4-B999-3F101F9DDAA3"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.94:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7E1A3DE1-2A1C-4B01-B54B-96B20624C796"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D31537A-343E-49AC-B899-81BEEC4DA33B",
"versionEndIncluding": "8.37"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D93B9A5-8ECA-48E5-83FC-8BC18A9DEFF3"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D780330E-6E98-4B68-AA8C-DFD2F3A69DB8"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A7C13DAD-D135-4726-8B69-3E8C484F4E26"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E4C2839D-ED01-4D74-B4CC-193096F4380F"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.23:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BBF44AC0-C254-4530-8DAD-A3CB751D7715"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.24:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2749EFC0-CA16-4E4C-B874-DE1F3736F713"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.25:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EC10445F-6106-412F-B8B5-3780C31CCDDF"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.31:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1A2D684F-851B-4FD1-8722-B8D838853DBE"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.32:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E6D9E30-ED22-4F1C-AABB-3C4C996AA8AB"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.33:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ED190E87-D032-4924-93D1-F8136BACC62D"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.34:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B5782A31-64CE-448C-9330-8EFF35BF6476"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.35:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D74B64ED-F2D6-4456-9063-1E4DCD6E1F3D"
},
{
"criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.36:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EB220C92-1132-4A3B-83B7-20047C8D4054"
}
],
"operator": "OR"
}
]
}
]