CVE-2008-5185

Name of the Vulnerable Software and Affected Versions GeSHi versions prior to 1.0.8

Description The issue allows remote attackers to cause a denial of service, specifically an infinite loop, by exploiting the highlighting functionality in geshi.php. This can be achieved by sending an XML sequence that contains an opening delimiter without a corresponding closing delimiter, such as "<".

Recommendations For versions prior to 1.0.8, update to version 1.0.8 or later to resolve the issue.