AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2008-6562: Cross-site scripting (XSS) vulnerability in jax_linklists.php in Jack (tR) Jax LinkLists 1.00 allows remote attackers to

infovulnerability

security

Source: NVD/CVE DatabaseMarch 31, 2009CVE-2008-6562

Summary

A cross-site scripting vulnerability (XSS, where attackers inject malicious code into a website that runs in users' browsers) was found in Jack (tR) Jax LinkLists version 1.00 in a file called jax_linklists.php. An attacker could inject arbitrary web script or HTML through the cat parameter to trick users or steal their data.

Vulnerability Details

CVSS Score

4.3

EPSS (30-day exploit probability)

EPSS: 0.1%

Classification

Attack SophisticationTrivial

Taxonomy References

CWE (Weakness Type)

CWE-79

CAPEC (Attack Pattern)

CAPEC-198 CAPEC-86

Original source: https://nvd.nist.gov/vuln/detail/CVE-2008-6562

First tracked: February 15, 2026 at 08:43 PM

Classified by LLM (prompt v3) · confidence: 95%