CVE-2007-3822 in WebCitinfo

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Webcit before 7.11 allow remote attackers to inject arbitrary web script or HTML via (1) the who parameter to showuser; and other vectors involving (2) calendar mode, (3) bulletin board mode, (4) room names, and (5) uploaded file names.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

07/16/2007

Disclosure

07/16/2007

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-80 (Confirmed)

Exploit

Download

CVSS

4.3

EPSS

0.07786

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-3822
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-3822
CVE Details	https://www.cvedetails.com/cve/CVE-2007-3822/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!