CVE-2008-2500

Mambo Mostlyce < 2 - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in the MOStlyContent Editor (MOStlyCE) component before 3.0 for Mambo allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (2)

[Patch] http://forum.mambo-foundation.org/showthread.php?t=11799

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/42749

Scores

EPSS 0.0022

EPSS Percentile 45.0%

Classification

CWE

CWE-79

Status draft

Affected Products (1)

mambo/mostlyce < 2

Timeline

Published May 29, 2008

Tracked Since Feb 18, 2026