CVE-2007-1977
CVE-2007-1977 describes a Cross-Site Scripting (XSS) vulnerability in holaCMS 1.4.10, specifically in index_cms.php where the acuparam parameter can be exploited to inject arbitrary script/HTML. Affected software is holaCMS 1.4.10; the vulnerable component is index_cms.php. The root cause is impr...