2 matches found
CVE-2007-3888
CVE-2007-3888 affects Insanely Simple Blog 0.5 and earlier, with multiple XSS vulnerabilities. The issue is exploitable via (1) the search action, potentially related to the term parameter to index.php, and (2) an anonymous blog entry, possibly involving posted_by, subject, and content parameters...
CVE-2007-3888
Multiple cross-site scripting XSS vulnerabilities in Insanely Simple Blog 0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the search action, possibly related to the term parameter to index.php; or 2 an anonymous blog entry, possibly involving the a postedby, b...