CVE-2007-5088

Freeside 1.7.2 contains a cross-site scripting (XSS) vulnerability in search/cust_bill_event.cgi that allows remote attackers to inject arbitrary web script or HTML via the failed parameter. CVE-2007-5088 is described with a MEDIUM severity (CVSS v2 base 4.3), network attack vector, no authentica...