2 matches found
CVE-2007-4433
The CVE-2007-4433 entry describes an XSS in the Text File Search ASP.NET edition, affecting the component textfilesearch.aspx where a remote attacker can inject arbitrary web script or HTML via the search field. This is documented with a CVSS v2 base score of 4.3 (Medium) and an I/P impact profil...
CVE-2007-4434
CVE-2007-4434 describes a cross-site scripting (XSS) vulnerability in the Text File Search ASP (Classic) edition, flow: attacker injects arbitrary script/HTML via the query parameter to textfilesearch.asp. Affected: the Text File Search ASP (Classic) implementation; root cause: improper handling/...