|
|
CVE Reference: CVE-2007-5629 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-5629 |
|
|
Description: Cross-site scripting (XSS) vulnerability in admin/logon.asp in ShoppingTree CandyPress Store 4.1 allows remote attackers to inject arbitrary web script or HTML via the msg parameter, a different vector than CVE-2007-2804. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/37391 SREASON http://securityreason.com/securityalert/3267 SAID Secunia Advisory: SA27339 OSVDB 38155 MISC http://www.securityfocus.com/data/vulnerabilities/exploits/26153.html BID 26153 |
|
| Return to the previous page. |
