CVE-2008-4818

Adobe Flash Player < 9.0.124.0 - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in Adobe Flash Player 9.0.124.0 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors involving HTTP response headers.

References (18)

Scores

EPSS 0.1767
EPSS Percentile 95.0%

Classification

CWE
CWE-79
Status published

Affected Products (21)

adobe/flash_player < 9.0.124.0
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
adobe/flash_player
... and 6 more

Timeline

Published Nov 10, 2008
Tracked Since Feb 18, 2026