CVE-2007-1828 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-1828
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-1828

Description: Multiple cross-site scripting (XSS) vulnerabilities in web-app.org WebAPP before 0.9.9.6 allow remote authenticated users to inject arbitrary web script or HTML via (1) the QUERY_STRING corresponding to drop downs or (2) various forms.

CVE Status: Candidate

References: VIM http://www.attrition.org/pipermail/vim/2007-March/001455.html SAID Secunia Advisory: SA24227 OSVDB 35214 35215 CONFIRM http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=254 http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=252

Return to the previous page.