Описание
Multiple cross-site scripting (XSS) vulnerabilities in JBlog 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to (a) index.php, or the (2) search parameter or (3) theme cookie to (b) recherche.php.
Multiple cross-site scripting (XSS) vulnerabilities in JBlog 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to (a) index.php, or the (2) search parameter or (3) theme cookie to (b) recherche.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-3973
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35551
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35556
- https://www.exploit-db.com/exploits/4211
- http://osvdb.org/38557
- http://osvdb.org/38558
- http://secunia.com/advisories/26165
- http://securityreason.com/securityalert/2919
- http://www.securityfocus.com/archive/1/474320/100/0/threaded
- http://www.securityfocus.com/bid/24991
- http://www.vupen.com/english/advisories/2007/2611
EPSS
Процентиль: 95%
0.20078
Средний
CVE ID
Связанные уязвимости
nvd
больше 18 лет назад
Multiple cross-site scripting (XSS) vulnerabilities in JBlog 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to (a) index.php, or the (2) search parameter or (3) theme cookie to (b) recherche.php.
EPSS
Процентиль: 95%
0.20078
Средний