CVE-2007-1234

Multiple cross-site scripting (XSS) vulnerabilities in sitex allow remote attackers to inject arbitrary web script or HTML via (1) the sxYear parameter to calendar.php, (2) the search parameter to search.php, (3) the linkid parameter to redirect.php, or (4) the page parameter to calendar_events.php.
Configurations

Configuration 1

cpe:2.3:a:bj_sintay:sitex:0.7.3:*:*:*:*:*:*:*

Information

Published : 2007-03-03 07:19

Updated : 2018-10-16 04:37


NVD link : CVE-2007-1234

Mitre link : CVE-2007-1234

Products Affected
No products.
CWE