CVE-2007-3254
CVE-2007-3254 covers multiple stored and reflected XSS vulnerabilities in Xythos Enterprise Document Manager (XEDM) versions prior to 5.0.25.8 and 6.x prior to 6.0.46.1. The issues enable remote authenticated users to inject arbitrary HTML/JavaScript via (1) a saved Workflow name; (2) a Workflow ...