CVE-2008-1342
Polymita BPM-Suite/CollagePortal - XSS
Title source: llmDescription
Multiple cross-site scripting (XSS) vulnerabilities in the search feature in Polymita BPM-Suite and CollagePortal allow remote attackers to inject arbitrary web script or HTML via the (1) _q and (2) lucene_index_field_value parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
References (1)
Scores
EPSS
0.0026
EPSS Percentile
49.4%
Classification
CWE
CWE-79
Status
draft
Affected Products (2)
polymita_technologies/bpm_suite
polymita_technologies/collageportal
Timeline
Published
Mar 17, 2008
Tracked Since
Feb 18, 2026