CVE-2008-3088
Kasseler-cms Kasseler Cms - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the Files module in Kasseler CMS 1.3.0 and 1.3.1 Lite allows remote attackers to inject arbitrary web script or HTML via the cid parameter in a Category action to index.php.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Cr@zy_King · textwebappsphp
https://www.exploit-db.com/exploits/6007
References (4)
Scores
EPSS
0.0364
EPSS Percentile
87.7%
Classification
CWE
CWE-79
Status
draft
Affected Products (2)
kasseler-cms/kasseler_cms
kasseler-cms/kasseler_cms
Timeline
Published
Jul 09, 2008
Tracked Since
Feb 18, 2026