{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-10T14:31:35.502","vulnerabilities":[{"cve":{"id":"CVE-2008-3730","sourceIdentifier":"cve@mitre.org","published":"2008-08-20T16:41:00.000","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in Nordicwind Document Management System (NOAH) before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."},{"lang":"es","value":"Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Nordicwind Document Management System (NOAH) anterior a 3.2.2, permite a atacantes remotos inyectar secuencias de comandos Web o HTML de su elección a través de vectores no especificados."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:*:*:*:*:*:*:*:*","versionEndIncluding":"3.2.1","matchCriteriaId":"E2F1CBC7-E6C8-4362-910C-F0241ECB0B10"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:1.5.0:*:*:*:*:*:*:*","matchCriteriaId":"85B722F8-86E7-4167-A0F6-4C47D031D3D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:1.5.0b:*:*:*:*:*:*:*","matchCriteriaId":"069E8791-CB9B-4561-9A44-E6436FCC7455"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:1.5.1:*:*:*:*:*:*:*","matchCriteriaId":"C969E818-F310-48A4-BCE5-D25D80DF6EA6"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:1.5.2:*:*:*:*:*:*:*","matchCriteriaId":"83E0EE8C-3A85-46F6-B514-0D17B18E87D4"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:1.5.3:*:*:*:*:*:*:*","matchCriteriaId":"DB68C485-CD65-4A7D-8870-786F344DA198"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:1.5.4:*:*:*:*:*:*:*","matchCriteriaId":"3BFBB5C0-6C00-4134-BD70-C4096F29FF66"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:1.5.5:*:*:*:*:*:*:*","matchCriteriaId":"5DAFCB7F-B5DE-45B1-9A68-9DC76B799923"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:2.0.1:*:*:*:*:*:*:*","matchCriteriaId":"A36D93C3-3A99-4C65-B8CD-9D6289118988"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:2.1.1:*:*:*:*:*:*:*","matchCriteriaId":"179BA060-71CA-4093-ABEF-9F99DA44D2A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:2.1.3:*:*:*:*:*:*:*","matchCriteriaId":"94193B07-3D89-47EB-92D0-60570DC13BA0"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:2.1.4:*:*:*:*:*:*:*","matchCriteriaId":"DE44810A-703F-4432-8261-A95AA6CBAA03"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:2.1.5:*:*:*:*:*:*:*","matchCriteriaId":"2767D0D4-11B8-4847-B6F6-038881455714"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:2.1.6:*:*:*:*:*:*:*","matchCriteriaId":"77AB71B7-8295-4580-846F-A59159EAAC59"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:2.2.1:*:*:*:*:*:*:*","matchCriteriaId":"F4F5D2C4-E4AD-4F04-99B0-4ABC8F992ADE"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:3.1.1:*:*:*:*:*:*:*","matchCriteriaId":"205EAB96-D71E-47FA-A194-3D97B99CA0D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:noah:3.1.3:*:*:*:*:*:*:*","matchCriteriaId":"4A9DFEF4-A828-4B22-A903-08111A4C99D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:*:*:*:*:*:*:*:*","versionEndIncluding":"3.2.1","matchCriteriaId":"EC455378-BDCC-4602-86B6-D6687AE66C1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:1.5.0:*:*:*:*:*:*:*","matchCriteriaId":"2539F691-6B92-40A6-B26C-AA059CF825C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:1.5.0b:*:*:*:*:*:*:*","matchCriteriaId":"DB57C4CD-359B-49ED-9E89-27088694F030"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:1.5.1:*:*:*:*:*:*:*","matchCriteriaId":"CFF058FC-90D8-4E08-BAEA-E7635CBD3582"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:1.5.2:*:*:*:*:*:*:*","matchCriteriaId":"E95E72B6-E43E-4707-8F04-29476A11B520"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:1.5.3:*:*:*:*:*:*:*","matchCriteriaId":"4F7C9417-BFF5-41DE-B328-A1F2E8375B83"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:1.5.4:*:*:*:*:*:*:*","matchCriteriaId":"DBF67F28-92D9-4689-B25E-343BA927397D"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:1.5.5:*:*:*:*:*:*:*","matchCriteriaId":"233330E5-2DED-4CB1-9653-E5CFA5C7E364"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:2.0.1:*:*:*:*:*:*:*","matchCriteriaId":"920417C4-BA54-4182-ACFF-3C1EE743A5FB"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:2.1.1:*:*:*:*:*:*:*","matchCriteriaId":"8251B1F0-47B4-446E-9A13-C1EAF2CD74EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:2.1.3:*:*:*:*:*:*:*","matchCriteriaId":"22DEA5BE-1102-4729-9E1F-6E5B39CC1BE7"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:2.1.4:*:*:*:*:*:*:*","matchCriteriaId":"A39C66C3-3267-4875-9040-CA7AC04F7874"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:2.1.5:*:*:*:*:*:*:*","matchCriteriaId":"AB6B9D61-C8AA-4F36-9769-374CED49C83D"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:2.1.6:*:*:*:*:*:*:*","matchCriteriaId":"43A85963-8CBC-4AC9-8F8A-C5D9F7FF3816"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:2.2.1:*:*:*:*:*:*:*","matchCriteriaId":"5E4B95AA-F5FC-4B93-B517-144D376C0822"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:3.1.1:*:*:*:*:*:*:*","matchCriteriaId":"20CB2E5F-B247-4531-BCA4-E9A4B52DABA2"},{"vulnerable":true,"criteria":"cpe:2.3:a:nordicwind:nordicwind_document_management_system:3.1.3:*:*:*:*:*:*:*","matchCriteriaId":"61C42D81-7E18-47BF-9E03-AB402AF20F6F"}]}]}],"references":[{"url":"http://osvdb.org/47558","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/31543","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.nordicwind.ca/noah/bugs/inputval.html","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/30747","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/44535","source":"cve@mitre.org"},{"url":"http://osvdb.org/47558","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/31543","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.nordicwind.ca/noah/bugs/inputval.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/30747","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/44535","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}