Vulnonym.org

CVE-2008-2115 - Supremacist While

Description

Multiple cross-site scripting (XSS) vulnerabilities in editor.php in ScriptsEZ.net Power Editor 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) te and (2) dir parameters in a tempedit action.

Reference

http://www.securityfocus.com/bid/29063 http://securityreason.com/securityalert/3864 https://exchange.xforce.ibmcloud.com/vulnerabilities/42223 https://www.exploit-db.com/exploits/5549 http://www.securityfocus.com/archive/1/491702/100/0/threaded