Unrated severityNVD Advisory· Published Jul 7, 2009· Updated Jun 16, 2026
CVE-2008-6850
CVE-2008-6850
Description
Cross-site scripting (XSS) vulnerability in messages.php in PHP-Fusion 6.01.17 and 7.00.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:php-fusion:php-fusion:6.01.17:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:php-fusion:php-fusion:6.01.17:*:*:*:*:*:*:*
- cpe:2.3:a:php-fusion:php-fusion:7.00.3:*:*:*:*:*:*:*
- (no CPE)range: <=7.00.3
Patches
Vulnerability mechanics
References
5- www.php-fusion.co.uk/news.phpnvdPatchVendor Advisory
- www.securityfocus.com/bid/33058nvdPatch
- secunia.com/advisories/33295nvdVendor Advisory
- osvdb.org/51053nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/47665nvd
News mentions
0No linked articles in our index yet.