CVSS: 4.3EPSS: 1%CPEs: 1EXPL: 1CVE-2007-3135
https://notcve.org/view.php?id=CVE-2007-3135
Cross-site scripting (XSS) vulnerability in atomPhotoBlog.php in Atom Photoblog 1.0.9 and earlier allows remote attackers to inject arbitrary web script or HTML via the tag parameter. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en atomPhotoBlog.php de Atom Photoblog 1.0.9 y versiones anteriores permite a atacantes remotos inyectar scripts web o HTML de su elección a través del parámetro tag. • http://osvdb.org/37046 http://secunia.com/advisories/25562 http://securityreason.com/securityalert/2787 http://sourceforge.net/project/shownotes.php?group_id=186464&release_id=514101 http://www.securityfocus.com/archive/1/470750/100/0/threaded http://www.securityfocus.com/bid/24363 http://www.secvsn.com/content/Advisories/sr-060607-atomphotoblog.html https://exchange.xforce.ibmcloud.com/vulnerabilities/34768 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2007-3134 – Atom Photoblog 1.0.1/1.0.9 - 'AtomPhotoblog.php' Multiple Input Validation Vulnerabilities
https://notcve.org/view.php?id=CVE-2007-3134
Multiple cross-site scripting (XSS) vulnerabilities in atomPhotoBlog.php in Atom PhotoBlog 1.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) Your Name, (2) Your Homepage, and (3) Your Comment fields, when using "Approve Comments." Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en atomPhotoBlog.php de Atom PhotoBlog 1.0.9 y versiones anteriores permiten a atacantes remotos inyectar scripts web o HTML de su elección mediante los campos (1) Your Name, (2) Your Homepage, y (3) Your Comment, cuando se utiliza "Approve Comments." • https://www.exploit-db.com/exploits/30161 http://osvdb.org/37046 http://secunia.com/advisories/25562 http://sourceforge.net/project/shownotes.php?group_id=186464&release_id=514101 https://exchange.xforce.ibmcloud.com/vulnerabilities/34767 •