Unrated severityNVD Advisory· Published Dec 26, 2008· Updated Jun 16, 2026
CVE-2008-5729
CVE-2008-5729
Description
Multiple cross-site scripting (XSS) vulnerabilities in AIST NetCat 3.12 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) form and (2) control parameters to FCKeditor/neditor.php, and the (3) path parameter to admin/siteinfo/iframe.inc.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:netcat:netcat:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:netcat:netcat:*:*:*:*:*:*:*:*range: <=3.12
- cpe:2.3:a:netcat:netcat:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:netcat:netcat:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:netcat:netcat:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:netcat:netcat:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:netcat:netcat:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:netcat:netcat:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:netcat:netcat:3.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.