2 matches found
CVE-2007-3276
Cross-site scripting XSS vulnerability in index.php in Site@School S@S 2.4.10 allows remote attackers to inject arbitrary web script or HTML via the q parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-3276
CVE-2007-3276 describes a Cross-site Scripting (XSS) vulnerability in Site@School (S@S) 2.4.10, specifically in index.php where the q parameter can be exploited to inject arbitrary script or HTML. The vulnerability is exploitable by remote attackers via the web and is associated with a CVSS v2 ba...