← volver
CVE-2007-6136

CVE-2007-6136

EPSS 1.5%
Multiple cross-site scripting (XSS) vulnerabilities in index.php in M2Scripts MySpace Scripts Poll Creator allow remote attackers to inject arbitrary web script or HTML via the (1) title, (2) intro, and (3) question parameters, and (4) unspecified answer parameters, in a create_new action. NOTE: some of these details are obtained from third party information.
Productos afectados
n/a · n/a
PoCs públicas encontradas1
exploitdbwww.exploit-db.com/exploits/30799no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://osvdb.org/38800http://secunia.com/advisories/27778https://exchange.xforce.ibmcloud.com/vulnerabilities/38633http://www.securityfocus.com/archive/1/484073/100/0/threadedhttp://www.securityfocus.com/bid/26544