Unrated severityNVD Advisory· Published Feb 5, 2009· Updated Jun 16, 2026
CVE-2008-6060
CVE-2008-6060
Description
Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) files created by InfoSoft FusionCharts allows remote attackers to inject arbitrary additional SWF content via a URL in the SRC attribute of an IMG element in the dataURL parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:infosoftglobal:fusion_charts:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:infosoftglobal:fusion_charts:*:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.