CVE-2008-5961

Name of the Vulnerable Software and Affected Versions Tribiq CMS Community versions 5.0.10B through 5.0.11E

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the cID parameter in a document action. This could potentially lead to unauthorized access or control of user sessions.

Recommendations For versions 5.0.10B through 5.0.11E, avoid using the cID parameter in the document action until a fix is available. As a temporary workaround, consider restricting access to the index.php file to minimize the risk of exploitation.