Hughes Technologies · W3-Msql · CVE-2008-0146
**Name of the Vulnerable Software and Affected Versions**
W3-mSQL (affected versions not specified)
**Description**
A cross-site scripting (XSS) issue exists in the error page of W3-mSQL, allowing remote attackers to inject arbitrary web script or HTML via the PATH INFO to the top-level URI.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.