4 matches found
CVE-2007-5426
Multiple cross-site scripting XSS vulnerabilities in ActiveKB NX 2.5.4 allow remote attackers to inject arbitrary web script or HTML via the page parameter to the default URI for some directories, as demonstrated by 1 ActiveKB/ and 2 default/categories/ActiveKB/...
CVE-2007-5426
Multiple cross-site scripting XSS vulnerabilities in ActiveKB NX 2.5.4 allow remote attackers to inject arbitrary web script or HTML via the page parameter to the default URI for some directories, as demonstrated by 1 ActiveKB/ and 2 default/categories/ActiveKB/...
CVE-2007-5426
CVE-2007-5426 : The provided documents identify multiple cross-site scripting (XSS) vulnerabilities in ActiveKB NX 2.5.4 . The issue arises from injectable content via the page parameter to the default URI for some directories (examples include ActiveKB/ and default/categories/ActiveKB/). The roo...
XXS в ActiveKB NX 2.5.4
Здравствуйте, 3APA3A. Software: ActiveKB NX 2.5.4 Vendor: www.interspire.com Vulnerability: XXS Risk: низкий Date: 1.09.2007 discovered by durito damagelab -duritoatmaildotru- HTTP: durito.narod.ru +:| Details |: Удаленный атакующий может с помощью специально сформированного URL выполнить...