CVE-2008-1224
BosClassifieds Classified Ads System 3.0 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in account.php in BosClassifieds Classified Ads System 3.0 allows remote attackers to inject arbitrary web script or HTML via the returnTo parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Scores
EPSS
0.0030
EPSS Percentile
52.7%
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
bosdev/bosclassifieds_classified_ads
Timeline
Published
Mar 10, 2008
Tracked Since
Feb 18, 2026