CVE-2007-2300
CVE-2007-2300 affects Endy Kristanto Surat kabar / News Management Online (phpwebnews) 0.2 and earlier. The vulnerability is a Cross-Site Scripting (XSS) flaw in the m_txt parameter that can be exploited via iklan.php, index.php, or bukutamu.php to inject arbitrary web script/HTML. Affected compo...