Lucene search
K

4 matches found

CVE
CVE
added 2007/04/13 6:0 p.m.59 views

CVE-2007-1873

Mephisto 0.7.3 is affected by a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary script or HTML via the q parameter in the search script. The impact is described as actionable by injecting code, with no vendor fix available according to the security adviso...

4.3CVSS5.6AI score0.02216EPSS
Exploits1References9Affected Software1
securityvulns
securityvulns
added 2007/04/13 12:0 a.m.64 views

Cross site scripting in mephisto 0.7.3

Cross site scripting in mephisto 0.7.3 security advisory References: http://www.mephistoblog.com https://vulners.com/cve/CVE-2007-1873 Description: Cross site scripting describes attacks that allow to insert malicious html or javascript code via get or post forms. This can be used to steal sessio...

4.3CVSS6.2AI score0.02216EPSS
Exploits1
Packet Storm
Packet Storm
added 2007/04/12 12:0 a.m.42 views

CVE-2007-1873.txt

Cross site scripting in mephisto 0.7.3 security advisory References: http://www.mephistoblog.com http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1873 Description: Cross site scripting describes attacks that allow to insert malicious html or javascript code via get or post forms. This can b...

4.3CVSS6.6AI score0.02216EPSS
Exploits1
Prion
Prion
added 2007/03/30 1:19 a.m.15 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-1873. Reason: This candidate is a duplicate of CVE-2007-1873. Notes: All CVE users should reference CVE-2007-1873 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

6.6AI score0.02216EPSS
Exploits1
Rows per page
Query Builder