Back to search
CVE-2007-5304
Published: Oct 9, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in ELSEIF CMS Beta 0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) repertimage parameter to utilisateurs/vousetesbannis.php, the (2) elseifvotetxtresultatduvote parameter to utilisateurs/votesresultats.php, and the (3) elseifforumtxtmenugeneraleduforum parameter to moduleajouter/depot/adminforum.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
38646
vdb-entry
x_refsource_OSVDB
38648
vdb-entry
x_refsource_OSVDB
25951
vdb-entry
x_refsource_BID
38647
vdb-entry
x_refsource_OSVDB
ADV-2007-3429
vdb-entry
x_refsource_VUPEN
elseif-multiple-xss(37007)
vdb-entry
x_refsource_XF
20071006 Else If cms Multiple Remote vulnerabilities
mailing-list
x_refsource_BUGTRAQ
3204
third-party-advisory
x_refsource_SREASON
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now