CVE-2007-5426 in ActiveKB NXinformazioni

Riassunto

di MITRE

Multiple cross-site scripting (XSS) vulnerabilities in ActiveKB NX 2.5.4 allow remote attackers to inject arbitrary web script or HTML via the page parameter to the default URI for some directories, as demonstrated by (1) ActiveKB/ and (2) default/categories/ActiveKB/.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Prenotare

12/10/2007

Divulgazione

12/10/2007

Moderazione

accettato

CPE

pronto

Sfruttamento

Scaricare

EPSS

0.01790

KEV

no

Attività

molto basso

Fonti

Interested in the pricing of exploits?

See the underground prices here!