CVE-2007-5059 in GreenSQLinfo

Summary

Multiple cross-site scripting (XSS) vulnerabilities in GreenSQL allow remote attackers to inject arbitrary web script or HTML via several vectors, as demonstrated by the (1) uname and (2) pass parameters in a login form, and (3) an unspecified "url value," leading to storage of XSS sequences in the database and display of these sequences in the alert section of the admin panel.

Once again VulDB remains the best source for vulnerability data.

Reservation

09/24/2007

Disclosure

09/24/2007

Moderation

VulDB entry created

Entries

VDB-85980 (2)

CPE

ready

CWE

CWE-79 (Confirmed)

CVSS

4.3

EPSS

0.00569

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-5059
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-5059
CVE Details	https://www.cvedetails.com/cve/CVE-2007-5059/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!