Unrated severityNVD Advisory· Published Feb 3, 2009· Updated Jun 16, 2026
CVE-2008-6044
CVE-2008-6044
Description
Cross-site scripting (XSS) vulnerability in advanced_search_result.php in xt:Commerce 3.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the keywords parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:xt-commerce:xt-commerce:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:xt-commerce:xt-commerce:*:*:*:*:*:*:*:*range: <=3.0.4
- (no CPE)range: <=3.0.4
Patches
Vulnerability mechanics
References
4- www.majorsecurity.de/index_2.phpnvdExploit
- www.securityfocus.com/bid/31313nvdExploitThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/496583/100/0/threadednvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/45340nvdVDB Entry
News mentions
0No linked articles in our index yet.