CVE-2008-3567

CVE-2008-3567 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp before 5.541 allows remote attackers to conduct cross-site scripting (XSS) attacks via an MP3 file with JavaScript in id3 tags.

Learn more about our Web Application Penetration Testing UK.