Back to search
CVE-2007-2600
Published: May 11, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in TutorialCMS (aka Photoshop Tutorials) 1.00 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) catFile parameter to (a) browseCat.php or (b) browseSubCat.php; the (2) id parameter to (c) openTutorial.php, (d) topFrame.php, or (e) admin/editListing.php; or the (3) search parameter to search.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
35893
vdb-entry
x_refsource_OSVDB
23905
vdb-entry
x_refsource_BID
ADV-2007-1742
vdb-entry
x_refsource_VUPEN
35894
vdb-entry
x_refsource_OSVDB
35897
vdb-entry
x_refsource_OSVDB
35896
vdb-entry
x_refsource_OSVDB
tutorialcms-multiple-xss(34215)
vdb-entry
x_refsource_XF
35895
vdb-entry
x_refsource_OSVDB
35892
vdb-entry
x_refsource_OSVDB
3887
exploit
x_refsource_EXPLOIT-DB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now