CVE-2007-2499

Multiple cross-site scripting (XSS) vulnerabilities in DVDdb 0.6 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the movieid parameter to loan.php or (2) the s parameter to listmovies.php.
Configurations

Configuration 1

cpe:2.3:a:globalmegacorp:dvddb:*:*:*:*:*:*:*:*

Information

Published : 2007-05-04 12:19

Updated : 2017-07-29 01:31


NVD link : CVE-2007-2499

Mitre link : CVE-2007-2499

Products Affected
No products.