CVE-2008-2527

Published Jun 3, 2008
Last updated 6 years ago
CVSS info 4.3
Overview

Description: Cross-site scripting (XSS) vulnerability in view.php in ActualScripts ActualAnalyzer Server 8.37 and earlier, ActualAnalyzer Gold 7.74 and earlier, ActualAnalyzer Pro 6.95 and earlier, and ActualAnalyzer Lite 2.78 and earlier allows remote attackers to inject arbitrary web script or HTML via the language parameter.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses

nvd@nist.gov: CWE-79
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84C4C0A4-C302-48FF-A846-798FB5F741B1"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9CB150B0-6627-4885-8156-23FBEC90CC8D"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6BF0D23B-EC1E-4283-B828-62518272264F"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A9C2DEDB-1FC6-41B9-9B46-9250CE96A92B"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE990B6A-A462-4911-BABF-15BE06F11953"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62239E3B-9683-47D6-9C6E-B258FCF0B5C7"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.32:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "47D1914D-EAE7-41E0-8595-F3E411C2107F"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.33:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3EDDE8B2-272F-469E-93FB-521648C20923"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.34:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F131CE41-DF5B-4028-A569-12DCD83E84EA"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51EC963F-85B0-4AC6-B9F4-C5207ACC8ED4"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.41:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C351BD4-FD34-4163-8576-96AF03AD2FBF"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.42:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0FF13AF-94DA-45DC-9B02-2285D3D1A0A4"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.43:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80254CC7-2095-4DCA-89A8-79A165A06CC5"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.51:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAA67108-D81C-4441-9430-79C6C809233A"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.61:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE9D366A-2FBB-4851-B3B4-F8A28BAAEDBD"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.62:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C1414F9D-8BC9-4184-A4DF-D8F652FBA698"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.63:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63925B25-2D98-4C15-9551-43C08DAEFA46"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.64:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B170756-152F-41C6-B01C-43D47F27FC6B"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.71:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D008E5B-274F-4B48-9AC9-2E2D9D2D63C3"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.72:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F44D339C-A99B-4CF2-B33C-05332E920201"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.73:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6296CB47-CC05-4B19-B585-47B0B8CCBCEC"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_gold:7.74:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A92292B9-190F-4739-B1A4-F698DC1A414B"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_lite:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1EB47481-B5E5-4A16-A1BB-AE54B9DAFCC0",
            "versionEndIncluding": "2.78"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_lite:2.77:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9891C9AE-4771-425B-BC69-DFD9DD1EC15D"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C4DE876-8E46-41B6-B5BC-486B1AB41BB7",
            "versionEndIncluding": "6.95"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.65:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8A4F891-6BC3-4CFB-85C0-16D517471003"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.67:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F1EE755-89E9-4A9C-936B-09FF21199242"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.68:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "943123CD-C7BE-4DAE-B15B-ED0C8AF3CE91"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.69:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0ADEEE15-3B3D-4F02-AC08-F0225BC4796F"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.71:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "03A7A0AA-146D-4E46-B91E-8A0F834C8389"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.72:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A69A1D73-13CB-4CA3-A9B0-E3FEEF7169A6"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.73:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B97B37AE-B7E4-4BC7-9416-D81B597A6570"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.81:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AE522273-5E82-4F3D-8444-27120CFB5AC3"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.82:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AAAE21ED-FA96-4C1D-B4B5-A53A6E0A5DBA"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.83:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2C66F75-D9A7-4D0A-BE6A-43794E2216A5"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.85:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F840ACB-2135-476C-A3FE-0E47DA783CDD"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.86:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBA5B7B0-4FF8-4A0B-B3DA-4A18B2F9737E"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.87:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4FA123C-F306-493E-8654-6F1DCAC13FA7"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.88:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B1169E4-2D5D-4E97-BA4D-324CF22E3537"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.89:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EE9EA11-CAB9-40F7-9370-52EBCC899688"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.91:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8544DE68-4397-4896-960B-A165CEC0BCEE"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.92:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "030F6DFE-435A-4336-B109-3B852885B765"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.93:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "369D9B53-A0AB-4BD4-B999-3F101F9DDAA3"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_pro:6.94:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E1A3DE1-2A1C-4B01-B54B-96B20624C796"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D31537A-343E-49AC-B899-81BEEC4DA33B",
            "versionEndIncluding": "8.37"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.02:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D93B9A5-8ECA-48E5-83FC-8BC18A9DEFF3"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D780330E-6E98-4B68-AA8C-DFD2F3A69DB8"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7C13DAD-D135-4726-8B69-3E8C484F4E26"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4C2839D-ED01-4D74-B4CC-193096F4380F"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBF44AC0-C254-4530-8DAD-A3CB751D7715"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2749EFC0-CA16-4E4C-B874-DE1F3736F713"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC10445F-6106-412F-B8B5-3780C31CCDDF"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1A2D684F-851B-4FD1-8722-B8D838853DBE"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.32:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E6D9E30-ED22-4F1C-AABB-3C4C996AA8AB"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.33:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED190E87-D032-4924-93D1-F8136BACC62D"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.34:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5782A31-64CE-448C-9330-8EFF35BF6476"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D74B64ED-F2D6-4456-9063-1E4DCD6E1F3D"
          },
          {
            "criteria": "cpe:2.3:a:actualscripts:actualanalyzer_server:8.36:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB220C92-1132-4A3B-83B7-20047C8D4054"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
