CVE-2008-0917

Name of the Vulnerable Software and Affected Versions Tor World Tor Search versions 1.1 and earlier I-Navigator version 4.0 Mobile Frontier versions 2.1 and earlier Diary.cgi (aka Quotes of the Day) versions 1.5 and earlier Tor News versions 1.21 and earlier Simple BBS versions 1.3 and earlier Interactive BBS versions 1.3 and earlier Tor Board versions 1.1 and earlier Simple Vote versions 1.1 and earlier Com Vote versions 1.2 and earlier

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. This could potentially lead to unauthorized actions on the affected web applications.

Recommendations For Tor World Tor Search versions 1.1 and earlier, update to a version later than 1.1. For I-Navigator version 4.0, consider disabling the application until a patch is available. For Mobile Frontier versions 2.1 and earlier, update to a version later than 2.1. For Diary.cgi (aka Quotes of the Day) versions 1.5 and earlier, update to a version later than 1.5. For Tor News versions 1.21 and earlier, update to a version later than 1.21. For Simple BBS versions 1.3 and earlier, update to a version later than 1.3. For Interactive BBS versions 1.3 and earlier, update to a version later than 1.3. For Tor Board versions 1.1 and earlier, update to a version later than 1.1. For Simple Vote versions 1.1 and earlier, update to a version later than 1.1. For Com Vote versions 1.2 and earlier, update to a version later than 1.2.