CVE-2007-3839
The CVE-2007-3839 entry describes a Cross-site Scripting (XSS) vulnerability in TBDev.NET’s takeprofedit.php (TBDev.NET DR 010306 and earlier). The underlying issue is a javascript: URI in the avatar parameter, enabling remote attackers to inject arbitrary web script or HTML. Connected documents ...