2 matches found
CVE-2007-3842
Cross-site scripting XSS vulnerability in the 8e6 R3000 Enterprise Filter before 2.0.05 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this may be the same as CVE-2007-2970...
CVE-2007-3842
CVE-2007-3842 (and related CVE-2007-2970) describes multiple cross-site scripting (XSS) flaws in the 8e6 R3000 Internet Filter/Enterprise Filter. The vulnerable component is cgi/block.cgi, with exploitation via the (1) URL, (2) CAT, and (3) USER parameters, enabling remote attackers to inject arb...