CVE-2008-0720

EPSS 0.51% · P66 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-0720

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cross-site scripting (XSS) vulnerability in Webmin 1.370 and 1.390 and Usermin 1.300 and 1.320 allows remote attackers to inject arbitrary web script or HTML via the search parameter to webmin_search.cgi (aka the search section), and possibly other components accessed through a "search box" or "open file box." NOTE: some of these details are obtained from third party information.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

WEBmin WEBmin_search.CGI 跨站脚本攻击漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

WEBmin和Usermin存在跨站脚本攻击漏洞。远程攻击者可以通过WEBmin_search.CGI的search参数(例如搜索操作)或者其他可以通过搜索对话框(search box) 或者打开文件对话框(open file box )访问的可能组件来注入任意WEB脚本或HTML。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-0720

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-0720

请登录查看更多情报信息。

http://forum.aria-security.net/showthread.php?t=511x_refsource_MISC
http://www.securityfocus.com/bid/27662vdb-entryx_refsource_BID
http://secunia.com/advisories/28827third-party-advisoryx_refsource_SECUNIA
http://www.vupen.com/english/advisories/2008/0450vdb-entryx_refsource_VUPEN
http://www.securityfocus.com/archive/1/487656/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/487678/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2008-0720

Same Patch Batch · n/a · 2008-02-12 · 91 CVEs total

CVE-2008-0671		tintin wintin++ add_line_buffer函数缓冲区溢出漏洞
CVE-2008-0002		Apache Tomcat 上下文参数错误信息泄露漏洞
CVE-2007-5333		Apache Tomcat 信息泄露漏洞
CVE-2008-0723		planetluc mynews mynews.inc.php 跨站脚本攻击漏洞
CVE-2008-0722		Pagetool index.php 跨站脚本攻击漏洞
CVE-2008-0721		Mambo Com_sermon组件 index.php SQL注入漏洞
CVE-2008-0719		OsCommerce customer_testimonials.php SQL注入漏洞
CVE-2008-0718		Sun Solaris USB Mouse STREAMS Module (usbms(7M)) 未明漏洞
CVE-2008-0724		Everything Development System 'Everything Development '引擎数据库储存密码信任管理漏洞
CVE-2008-0670		Joomla Com_noticias index.php SQL注入漏洞
CVE-2008-0669		Sift Unity search.CGI 跨站脚本攻击漏洞
CVE-2008-0672		tintin wintin++ process_chat_input函数拒绝服务漏洞
CVE-2008-0673		tintin wintin++ 文件传入请求设计错误漏洞
CVE-2008-0675		The Everything Development 引擎 'cms/index.pl' SQL注入漏洞
CVE-2008-0676		A-Blog search.php 跨站脚本攻击漏洞
CVE-2008-0677		A-Blog blog.php SQL注入漏洞
CVE-2008-0678		BlogPHP index.php id参数 SQL注入漏洞
CVE-2008-0679		BlogPHP index.php search参数跨站脚本攻击漏洞
CVE-2008-0680		microtik routeros SNMPd 拒绝服务漏洞
CVE-2008-0681		phpShop 'index.php' SQL 注入漏洞

Showing top 20 of 91 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-0720

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-0720

I. Basic Information for CVE-2008-0720

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-0720

III. Intelligence Information for CVE-2008-0720

Same Patch Batch · n/a · 2008-02-12 · 91 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-0720

Leave a comment