CVE-2008-2553
Slash < r_2_5_0_94 - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in Slashdot Like Automated Storytelling Homepage (Slash) (aka Slashcode) R_2_5_0_94 and earlier allows remote attackers to inject arbitrary web script or HTML via the userfield parameter.
References (9)
Scores
EPSS
0.0065
EPSS Percentile
70.5%
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
slashcode.com/slash
< r_2_5_0_94
Timeline
Published
Jun 05, 2008
Tracked Since
Feb 18, 2026