Unrated severityNVD Advisory· Published Feb 27, 2008· Updated Apr 23, 2026

CVE-2008-1037

Description

Cross-site scripting (XSS) vulnerability in the file listing function in the web management interface in Packeteer PacketShaper and PolicyCenter 8.2.2 allows remote attackers to inject arbitrary web script or HTML via the FILELIST parameter to an arbitrary component, which triggers injection into an Error Report page.

Affected products

Packeteer/Packetshaper
cpe:2.3:a:packeteer:packetshaper:8.2.2:*:*:*:*:*:*:*
Packeteer/Policycenter
cpe:2.3:a:packeteer:policycenter:8.2.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/27982nvdExploit
secunia.com/advisories/29119nvd
securityreason.com/securityalert/3701nvd
www.securityfocus.com/archive/1/488712/100/0/threadednvd
www.securitytracker.com/idnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000