Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4102

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2007-4102
Last Modified 05 Sep 2008 05:27:24
Published 31 Jul 2007 06:17:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4102

Summary

Cross-site scripting (XSS) vulnerability in search.php for sBlog 0.7.3 Beta allows remote attackers to inject arbitrary HTML and web script via a leading '"/> sequence in the search string.

Vulnerable Systems

Application

  • Sblog 0.7.3 Beta


References

XF - sblog-search-xss(35645)

BID - 25098

BUGTRAQ - 20070726 sBlog 0.7.3 Beta XSS Vulnerabilitie

SREASON - 2942


Last Updated: 27 May 2016 10:45:46