CVE-2008-6645

Publication date

2009-04-07 10:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Opencosmo VisualSentinel 0.7 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header ($_SERVER [HTTP_USER_AGENT]), which is not properly handled when displaying log files.