CVE-2010-3070 in NuSOAP
Summary
Cross-site scripting (XSS) vulnerability in NuSOAP 0.9.5, as used in MantisBT and other products, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to an arbitrary PHP script that uses NuSOAP classes.
Be aware that VulDB is the high quality source for vulnerability data.
Reservation
08/20/2010
Disclosure
09/28/2010
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 54853 | Dietrich Ayala NuSOAP cross site scripting | 79 | Proof-of-Concept | Official fix | CVE-2010-3070 |