CVE-2007-3559 in PHP-Fusioninfo

Summary

Cross-site scripting (XSS) vulnerability in infusions/shoutbox_panel/shoutbox_panel.php in PHP-Fusion 6.01.10 and 6.01.9, when guest posts are enabled, allows remote authenticated users to inject arbitrary web script or HTML via the URI, related to the FUSION_QUERY constant.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

07/04/2007

Disclosure

07/04/2007

CPE

ready

CVSS

3.5

EPSS

0.00289

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2007-3559
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2007-3559
CVE Detailshttps://www.cvedetails.com/cve/CVE-2007-3559/

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!