Unrated severityNVD Advisory· Published Mar 6, 2009· Updated Jun 16, 2026
CVE-2008-6436
CVE-2008-6436
Description
Cross-site scripting (XSS) vulnerability in the Web Server in Xerox WorkCentre 7132, 7228, 7235, and 7245 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected products
5cpe:2.3:h:xerox:workcentre:7132:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:h:xerox:workcentre:7132:*:*:*:*:*:*:*
- cpe:2.3:h:xerox:workcentre:7228:*:*:*:*:*:*:*
- cpe:2.3:h:xerox:workcentre:7235:*:*:*:*:*:*:*
- cpe:2.3:h:xerox:workcentre:7245:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
6- www.vupen.com/english/advisories/2008/1628/referencesnvdPatchVendor Advisory
- www.xerox.com/downloads/usa/en/c/cert_XRX08_004.pdfnvdPatchVendor Advisory
- secunia.com/advisories/30364nvdVendor Advisory
- osvdb.org/45627nvd
- www.securityfocus.com/bid/29345nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/42595nvd
News mentions
0No linked articles in our index yet.