CVE-2008-4083

Brim - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in the Bookmarks plugin in Brim 2.0 allows remote authenticated users to inject arbitrary web script or HTML via the name parameter in an addItemPost action to index.php. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by InjEctOr5 · textwebappsphp

https://www.exploit-db.com/exploits/6332

View Code ZIP pw:eip

References (5)

[Vendor Advisory] http://secunia.com/advisories/31661

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/44790

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/30944

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/6332

[Third Party Advisory] http://securityreason.com/securityalert/4251

Scores

EPSS 0.0052

EPSS Percentile 66.5%

Classification

CWE

CWE-79

Status draft

Affected Products (1)

brim-project/brim

Timeline

Published Sep 15, 2008

Tracked Since Feb 18, 2026