CVE-2007-4479

Cross-site scripting (XSS) vulnerability in search.html in Search Engine Builder allows remote attackers to inject arbitrary web script or HTML via the searWords parameter.

Link	Resource
http://securityvulns.ru/Rdocument843.html	Exploit
http://websecurity.com.ua/1159/
http://www.securityfocus.com/bid/25391
http://secunia.com/advisories/26560
http://osvdb.org/37097
https://exchange.xforce.ibmcloud.com/vulnerabilities/36149
http://www.securityfocus.com/archive/1/477253/100/0/threaded

Configuration 1

cpe:2.3:a:aleadsoft.com:search_engine_builder_professional:2.40:*:*:*:*:*:*:*

---

Published : 2007-08-22 11:17

Updated : 2018-10-15 09:35

---

NVD link : CVE-2007-4479

Mitre link : CVE-2007-4479

No products.

NVD-CWE-Other