CVE-2008-2115
Scriptsez Power Editor - XSS
Title source: ruleDescription
Multiple cross-site scripting (XSS) vulnerabilities in editor.php in ScriptsEZ.net Power Editor 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) te and (2) dir parameters in a tempedit action.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Virangar Security · textwebappsphp
https://www.exploit-db.com/exploits/5549
References (5)
Scores
EPSS
0.0329
EPSS Percentile
87.0%
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
scriptsez/power_editor
Timeline
Published
May 08, 2008
Tracked Since
Feb 18, 2026