CVE-2008-7098

Name of the Vulnerable Software and Affected Versions Qsoft K-Rate Premium (affected versions not specified)

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via several fields, including the blog's Title and Text fields, the gallery's Description field in Your Pictures, the forum's Your Message field when posting a new thread, or the vote parameter in a view action to "index.php".

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.