CVE-2007-5293
CVE-2007-5293
Multiple cross-site scripting (XSS) vulnerabilities in IDMOS 1.0-beta (aka Phoenix) allow remote attackers to inject arbitrary web script or HTML via the (1) err_msg parameter to error.php and the (2) content parameter to templates/simple/ia.php.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/4495unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://osvdb.org/38631http://osvdb.org/38632http://securityreason.com/securityalert/3205https://exchange.xforce.ibmcloud.com/vulnerabilities/36997https://exchange.xforce.ibmcloud.com/vulnerabilities/36999https://www.exploit-db.com/exploits/4495http://www.securityfocus.com/archive/1/481682/100/0/threadedhttp://www.securityfocus.com/bid/25950http://www.vupen.com/english/advisories/2007/3433