CVE-2008-3255
Published Jul 22, 2008
Last updated 4 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in LunarNight Laboratory WebProxy 1.7.8 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ln-lab:webproxy:1.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "52B7D920-09F5-4369-959A-F68785BC9048"
},
{
"criteria": "cpe:2.3:a:ln-lab:webproxy:1.7.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5EDFC798-F90F-46A9-B334-30C5B60A36A7"
},
{
"criteria": "cpe:2.3:a:ln-lab:webproxy:1.7.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3CF37221-DA0D-469C-A487-8D7F599023BC"
},
{
"criteria": "cpe:2.3:a:ln-lab:webproxy:1.7.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "77BCB52E-5D55-42ED-A327-97268EF19B54"
},
{
"criteria": "cpe:2.3:a:ln-lab:webproxy:1.7.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AA11FFE0-5123-4A70-93A0-23FC895F5C8B"
},
{
"criteria": "cpe:2.3:a:ln-lab:webproxy:1.7.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D972E410-37AC-4B89-9030-7BAAD508AA5D"
},
{
"criteria": "cpe:2.3:a:ln-lab:webproxy:1.7.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "97B3444B-706D-4B28-860D-E33F2C30A48E"
},
{
"criteria": "cpe:2.3:a:ln-lab:webproxy:1.7.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EEC43894-A4E5-4E12-8AE6-F4E343367BA1"
},
{
"criteria": "cpe:2.3:a:ln-lab:webproxy:1.7.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A040014-8F5E-48EC-B65A-8C815DAE6129"
}
],
"operator": "OR"
}
]
}
]