CVE-2008-1991

Name of the Vulnerable Software and Affected Versions Acidcat CMS version 3.4.1

Description The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the field parameter in the admin colors swatch.asp file.

Recommendations For Acidcat CMS version 3.4.1, update the admin colors swatch.asp file to properly sanitize the field parameter and prevent the injection of malicious scripts. As a temporary workaround, consider restricting access to the admin colors swatch.asp file to minimize the risk of exploitation.