CVE-2007-0798 in Ublog Reloadinformazioni

Riassunto

di MITRE

Multiple cross-site scripting (XSS) vulnerabilities in Ublog Reload 1.0.5 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) login.asp; and allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters to (2) badword.asp, (3) polls.asp, and (4) users.asp.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

06/02/2007

Divulgazione

06/02/2007

Moderazione

accettato

Voce

Collegare

mostrare

CPE

pronto

CWE

CWE-80 (confermato)

CVSS

4.3 (NVD)

EPSS

0.01965

KEV

Attività

molto basso

Settore

Education

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0798
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0798
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0798/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you know our Splunk app?

Download it now for free!