CVE-2008-7117

CVE-2008-7117 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

eledicss.php in WeBid auction script 0.5.4 allows remote attackers to modify arbitrary cascading style sheets (CSS) files via a certain request with the file parameter set to style.css. NOTE: this can probably be leveraged for cross-site scripting (XSS) attacks.

Learn more about our Web App Pen Testing.