CVE-2007-4264 in simpleinfo

Summary

Multiple cross-site scripting (XSS) vulnerabilities in index.php in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) 1.5.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) path and (2) download parameters.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

08/08/2007

Disclosure

08/09/2007

Moderation

VulDB entry created

Entries

1: VDB-38262

CPE

ready

CWE

CWE-80 (Confirmed)

Exploit

Download

CVSS

4.3

EPSS

0.00458

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-4264
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-4264
CVE Details	https://www.cvedetails.com/cve/CVE-2007-4264/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!