{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-24T11:30:03.385","vulnerabilities":[{"cve":{"id":"CVE-2008-1468","sourceIdentifier":"cve@mitre.org","published":"2008-03-24T21:44:00.000","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in namazu.cgi in Namazu before 2.0.18 allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded input, related to failure to set the charset, a different vector than CVE-2004-1318 and CVE-2001-1350. NOTE: some of these details are obtained from third party information."},{"lang":"es","value":"Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en namazu.cgi de Namazu antes de 2.0.18 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de una entrada codificada con UTF-7, relacionada con un fallo al establecer el conjunto de caracteres, un vector distinto a CVE-2004-1318 y CVE-2001-1350. NOTA: alguno de estos detalles se han obtenido de información de terceros."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:namazu:namazu:*:*:*:*:*:*:*:*","versionEndIncluding":"2.0.17","matchCriteriaId":"7652498D-C86D-4457-AE11-99CD320DFCDA"},{"vulnerable":true,"criteria":"cpe:2.3:a:namazu:namazu:1.3.0.11:*:*:*:*:*:*:*","matchCriteriaId":"2AAE7466-56A5-4FBF-8F28-F33150FA2713"},{"vulnerable":true,"criteria":"cpe:2.3:a:namazu:namazu:2.0:*:*:*:*:*:*:*","matchCriteriaId":"7E9E6345-F6AF-4AC4-B9A5-54EDAB3E49CB"},{"vulnerable":true,"criteria":"cpe:2.3:a:namazu:namazu:2.0.2:*:*:*:*:*:*:*","matchCriteriaId":"F17EB317-5BCF-4756-8F1E-FD3303BBC662"},{"vulnerable":true,"criteria":"cpe:2.3:a:namazu:namazu:2.0.12:*:*:*:*:*:*:*","matchCriteriaId":"71C4F1F4-53D0-4EE4-8F6C-171E9B43A942"},{"vulnerable":true,"criteria":"cpe:2.3:a:namazu:namazu:2.0.13:*:*:*:*:*:*:*","matchCriteriaId":"46FB42D2-C51A-4C2B-97DC-308246D7D853"},{"vulnerable":true,"criteria":"cpe:2.3:a:namazu:namazu:2.0.14:*:*:*:*:*:*:*","matchCriteriaId":"7E70426F-C511-4582-BF05-448CCFB52607"},{"vulnerable":true,"criteria":"cpe:2.3:a:namazu:namazu:2.0.15:*:*:*:*:*:*:*","matchCriteriaId":"8FB99CD9-3892-4F06-AE5A-66741CE8201F"},{"vulnerable":true,"criteria":"cpe:2.3:a:namazu:namazu:2.0.16:*:*:*:*:*:*:*","matchCriteriaId":"AC5AC101-DF8C-4517-9F46-64E4201D2D9F"}]}]}],"references":[{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444","source":"cve@mitre.org"},{"url":"http://jvn.jp/jp/JVN%2300892830/index.html","source":"cve@mitre.org"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=127239985506823&w=2","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/29386","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/29561","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/31687","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/39645","source":"cve@mitre.org"},{"url":"http://www.namazu.org/security.html.en","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/28380","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/41360","source":"cve@mitre.org"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00575.html","source":"cve@mitre.org"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00654.html","source":"cve@mitre.org"},{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://jvn.jp/jp/JVN%2300892830/index.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=127239985506823&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/29386","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/29561","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/31687","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/39645","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.namazu.org/security.html.en","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/28380","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/41360","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00575.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00654.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}