CVE-2008-5893
ClickAndEmail - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in admin_dblayers.asp in ClickAndEmail allows remote attackers to inject arbitrary web script or HTML via the tablename parameter in an update action.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by AlpHaNiX · textwebappsasp
https://www.exploit-db.com/exploits/7485
Scores
EPSS
0.0364
EPSS Percentile
87.7%
Classification
CWE
CWE-79
Status
published
Affected Products (2)
icash/click\&email
n/a/n/a
Timeline
Published
Jan 12, 2009
Tracked Since
Feb 18, 2026