CVE-2007-3579

2007-07-05T20:30:00
ID CVE-2007-3579
Type cve
Reporter cve@mitre.org
Modified 2017-07-29T01:32:00

Description

PHPIDS before 20070703 does not properly handle setting the .text property of a SCRIPT element before its attachment to the DOM, which allows remote attackers to inject arbitrary web script.