3 matches found
CVE-2007-3693-gobi.txt
http://int21.de/cve/CVE-2007-3693-gobi.txt Cross site scripting and information disclosure in gobi/helma security advisory References: http://gobi.helma.org/ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3693 Description: Cross site scripting describes attacks that allow to insert...
[Full-disclosure] CVE-2007-3693: Cross site scripting and information disclosure in gobi/helma
http://int21.de/cve/CVE-2007-3693-gobi.txt Cross site scripting and information disclosure in gobi/helma security advisory References: http://gobi.helma.org/ https://vulners.com/cve/CVE-2007-3693 Description: Cross site scripting describes attacks that allow to insert malicious html or javascript...
CVE-2007-3693
The CVE-2007-3693 issue affects the gobi CMS built on the Helma application server. The vulnerability is a cross-site scripting (XSS) flaw in the search function, where user input sent to the q parameter can be exploited to inject arbitrary HTML/JavaScript. The provided materials indicate that th...