2 matches found
CVE-2007-1646
Multiple cross-site scripting XSS vulnerabilities in SubHub 2.3.0 allow remote attackers to inject arbitrary web script or HTML via 1 the searchtext parameter to a /search, or the 2 message parameter to b /calendar or c /subscribe...
CVE-2007-1646
CVE-2007-1646 : Multiple cross-site scripting (XSS) vulnerabilities in SubHub 2.3.0. Attack surface includes (1) searchtext parameter to /search and (2) message parameter to /calendar or /subscribe. Remote attackers can inject arbitrary web script or HTML. The NVD entry reports base score 4.3 (Me...