CVE Vulnerability
CVE-2007-3887
Multiple cross-site scripting (XSS) vulnerabilities in mesaj_formu.asp in ASP Ziyaretci Defteri 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Isim, (2) Mesajiniz, and (3) E-posta fields. NOTE: these probably correspond to the isim, mesaj, and posta parameters to save.php.
References
| Link | Resource |
|---|---|
| http://www.packetstormsecurity.org/0707-exploits/aspziy-xss.txt | Exploit |
| http://www.securityfocus.com/bid/24937 | |
| http://secunia.com/advisories/26079 | Vendor Advisory |
| http://secunia.com/advisories/26375 | Vendor Advisory |
| http://www.vupen.com/english/advisories/2007/2558 | Vendor Advisory |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/35445 |
Configurations
Configuration 1
|
Information
Published : 2007-07-18 11:30
Updated : 2017-07-29 01:32
NVD link : CVE-2007-3887
Mitre link : CVE-2007-3887
Products Affected
No products.
CWE