CVE-2007-0175

Опубликовано: 11 янв. 2007

Источник: debian

Описание

Cross-site scripting (XSS) vulnerability in htsrv/login.php in b2evolution 1.8.6 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes in the redirect_to parameter.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
b2evolution	fixed	0.9.2-4		package

Связанные уязвимости

CVE-2007-0175

ubuntu

почти 19 лет назад

Cross-site scripting (XSS) vulnerability in htsrv/login.php in b2evolution 1.8.6 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes in the redirect_to parameter.

CVE-2007-0175

nvd

почти 19 лет назад

Cross-site scripting (XSS) vulnerability in htsrv/login.php in b2evolution 1.8.6 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes in the redirect_to parameter.

GHSA-c6qv-jf35-wmfp

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in htsrv/login.php in b2evolution 1.8.6 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes in the redirect_to parameter.