CVE-2007-0266

2007-01-1623:00:00

mitre

www.cve.org

AI Score

7.3

Confidence

High

EPSS

0.011

Percentile

84.3%

JSON

SQL injection vulnerability in boxx/ShowAppendix.asp in Ezboxx Portal System Beta 0.7.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the iid parameter.

References

osvdb.org/32825

osvdb.org/33466

secunia.com/advisories/23759

www.bugsec.com/articles.php?Security=20

www.securityfocus.com/archive/1/456699/100/0/threaded

www.vupen.com/english/advisories/2007/0208