Unrated severityNVD Advisory· Published Jun 30, 2008· Updated Jun 16, 2026
CVE-2008-2923
CVE-2008-2923
Description
Cross-site scripting (XSS) vulnerability in read/search/results in Lyris ListManager 8.8, 8.95, and 9.3d allows remote attackers to inject arbitrary web script or HTML via the words parameter.
Affected products
4cpe:2.3:a:lyris:list_manager:8.8:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:lyris:list_manager:8.8:*:*:*:*:*:*:*
- cpe:2.3:a:lyris:list_manager:8.95:*:*:*:*:*:*:*
- cpe:2.3:a:lyris:list_manager:9.3d:*:*:*:*:*:*:*
- (no CPE)range: 8.8, 8.95, and 9.3d
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.