Описание
Cross-site scripting (XSS) vulnerability in the preview form in Stephen Ostermiller Contact Form before 2.00.02 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors that contain an apostrophe.
Cross-site scripting (XSS) vulnerability in the preview form in Stephen Ostermiller Contact Form before 2.00.02 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors that contain an apostrophe.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-3352
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34962
- http://bugzilla.ostermiller.com/show_bug.cgi?id=151
- http://ostermiller.org/contactform
- http://osvdb.org/36372
- http://secunia.com/advisories/25812
- http://www.attrition.org/pipermail/vim/2007-June/001669.html
- http://www.securityfocus.com/bid/24559
- http://www.vupen.com/english/advisories/2007/2333
EPSS
Процентиль: 67%
0.00537
Низкий
CVE ID
Связанные уязвимости
nvd
больше 18 лет назад
Cross-site scripting (XSS) vulnerability in the preview form in Stephen Ostermiller Contact Form before 2.00.02 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors that contain an apostrophe.
EPSS
Процентиль: 67%
0.00537
Низкий