Unrated severityNVD Advisory· Published Mar 31, 2009· Updated Apr 23, 2026
CVE-2008-6571
CVE-2008-6571
Description
Multiple cross-site scripting (XSS) vulnerabilities in LinPHA before 1.3.4 might allow remote attackers to inject arbitrary web script or HTML via (1) new_images.php, (2) login.php, and unspecified vectors.
Affected products
17cpe:2.3:a:linpha:linpha:*:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:a:linpha:linpha:*:*:*:*:*:*:*:*range: <=1.3.3
- cpe:2.3:a:linpha:linpha:0.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:0.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:0.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:0.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:0.9.4:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:linpha:linpha:1.3.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- linpha.cvs.sourceforge.net/linpha/linpha/ChangeLognvdVendor Advisory
- secunia.com/advisories/29724nvdVendor Advisory
- osvdb.org/50225nvd
- osvdb.org/50226nvd
- osvdb.org/50227nvd
News mentions
0No linked articles in our index yet.