Low severityNVD Advisory· Published Feb 27, 2008· Updated Jun 16, 2026
CVE-2008-1045
CVE-2008-1045
Description
Cross-site scripting (XSS) vulnerability in the file tree navigation function in system/workplace/views/explorer/tree_files.jsp in Alkacon OpenCMS 7.0.3 allows remote attackers to inject arbitrary web script or HTML via the resource parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.opencms:opencms-coreMaven | < 7.0.4 | 7.0.4 |
Affected products
2Patches
Vulnerability mechanics
References
7- www.securityfocus.com/bid/27986nvdExploit
- github.com/advisories/GHSA-v965-wwrq-gxfgghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2008-1045ghsaADVISORY
- securityreason.com/securityalert/3702nvdWEB
- github.com/alkacon/opencms-core/commit/49c5beded65bf0232cab61b1299b85dee9ae2014ghsaWEB
- secunia.com/advisories/29121nvd
- www.securityfocus.com/archive/1/488708/100/0/threadednvd
News mentions
0No linked articles in our index yet.