Unrated severityNVD Advisory· Published Apr 10, 2009· Updated Apr 23, 2026

CVE-2008-6700

Description

Multiple cross-site scripting (XSS) vulnerabilities in Butterfly Organizer 2.0.0 allow remote attackers to inject arbitrary web script or HTML via the (1) mytable parameter to view.php, (2) mytable parameter to viewdb2.php, (3) tablehere parameter to category-rename.php, and (4) letter parameter to module-contacts.php.

Affected products

Butterflymedia/Butterfly Organizer
cpe:2.3:a:butterflymedia:butterfly_organizer:2.0.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/29700nvd
exchange.xforce.ibmcloud.com/vulnerabilities/43066nvd
www.exploit-db.com/exploits/5797nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000