2 matches found
CVE-2009-3444
Cross-site scripting XSS vulnerability in email.php in e107 0.7.16 and earlier allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer header in a news.1 aka news to email action...
e107 0.7.16 Referer header xss
Exploit for unknown platform in category web applications ============================== e107 0.7.16 Referer header xss ============================== XSS: At page for sending news to email http://site/email.php?news.1 it's possible to conduct XSS attack via Referer header. Particularly it can be...