CVE-2007-3517

2007-07-03T18:30:00
ID CVE-2007-3517
Type cve
Reporter cve@mitre.org
Modified 2011-03-08T02:56:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in Claroline 1.8.3 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF) to (1) index.php, (2) demo/claroline170/index.php, and possibly other scripts.