Back to search
CVE-2007-1234
Published: Mar 3, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in sitex allow remote attackers to inject arbitrary web script or HTML via (1) the sxYear parameter to calendar.php, (2) the search parameter to search.php, (3) the linkid parameter to redirect.php, or (4) the page parameter to calendar_events.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20070223 sitex multiple vulnerabilities
mailing-list
x_refsource_BUGTRAQ
33161
vdb-entry
x_refsource_OSVDB
33158
vdb-entry
x_refsource_OSVDB
2373
third-party-advisory
x_refsource_SREASON
20070414 Re: sitex multiple vulnerabilities
mailing-list
x_refsource_BUGTRAQ
33159
vdb-entry
x_refsource_OSVDB
33160
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now