CVE-2008-2553

Publication date

2008-06-05 20:21:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Slashdot Like Automated Storytelling Homepage (Slash) (aka Slashcode) R_2_5_0_94 and earlier allows remote attackers to inject arbitrary web script or HTML via the userfield parameter.