CVE-2008-1479

Name of the Vulnerable Software and Affected Versions cfnetgs version 0.24

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the directory parameter in index.php.

Recommendations For version 0.24, update to a version that fixes this issue, however, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the index.php file or validating and sanitizing the directory parameter to minimize the risk of exploitation.