CVE-2007-1828

2007-04-03T00:19:00
ID CVE-2007-1828
Type cve
Reporter cve@mitre.org
Modified 2011-03-08T02:52:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in web-app.org WebAPP before 0.9.9.6 allow remote authenticated users to inject arbitrary web script or HTML via (1) the QUERY_STRING corresponding to drop downs or (2) various forms.