CVE-2008-4372

Availscript Article Script - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in articles.php in AvailScript Article Script allows remote attackers to inject arbitrary web script or HTML via the aIDS parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED

by sl4xUz · textwebappsphp

https://www.exploit-db.com/exploits/6409

View Code ZIP pw:eip

References (5)

[Third Party Advisory] http://secunia.com/advisories/31816

[Exploit] http://www.securityfocus.com/bid/31095

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/45020

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/6409

[Third Party Advisory] http://securityreason.com/securityalert/4331

Scores

EPSS 0.0329

EPSS Percentile 87.0%

Classification

CWE

CWE-79

Status published

Affected Products (2)

availscript/availscript_article_script

n/a/n/a

Timeline

Published Oct 01, 2008

Tracked Since Feb 18, 2026