CVE-2007-4479
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
CVE
CVE-2007-4479
Status
Candidate
Description
Cross-site scripting (XSS) vulnerability in search.html in Search Engine Builder allows remote attackers to inject arbitrary web script or HTML via the searWords parameter.
Phase
Assigned (22.08.2007)
NVD:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-4479
References
BID :
25391
BUGTRAQ :
20070821 Vulnerabilities digest
MISC :
http://securityvulns.ru/Rdocument843.html
MISC :
http://websecurity.com.ua/1159/
XF :
searchenginebuilder-search-xss(36149)
SecurityVulns:
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
