CVE-2008-0751

Publication date

2008-02-13 19:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the Freetag before 2.96 plugin for S9Y Serendipity, when using Internet Explorer 6 or 7, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to plugin/tag/.