CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2007-4297
https://notcve.org/view.php?id=CVE-2007-4297
Multiple cross-site scripting (XSS) vulnerabilities in yorumkaydet.asp in Dersimiz Haber Ekleme Modulu allow remote attackers to inject arbitrary web script or HTML via the (1) yazan, (2) mail, and (3) yorum parameters. NOTE: some of these details are obtained from third party information. Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en yorumkaydet.asp de Dersimiz Haber Ekleme Modulu permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección mediante los parámetros (1) yazan, (2) mail, y (3) yorum. NOTA: algunos de estos detalles se han obtenido de información de terceros. • http://osvdb.org/37537 http://secunia.com/advisories/26380 http://www.packetstormsecurity.org/0708-exploits/dersimiz-xss.txt http://www.securityfocus.com/bid/25250 http://www.vupen.com/english/advisories/2007/2831 https://exchange.xforce.ibmcloud.com/vulnerabilities/35911 •