CVE-2007-5370

Published: Oct 11, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in cgi-bin/dnewsweb.exe in NetWin DNewsWeb (DNews News Server) 57e1 allow remote attackers to inject arbitrary web script or HTML via the (1) group or (2) utag parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

dnews-dnewsweb-xss(37031)

vdb-entry

x_refsource_XF

20071009 DNewsWeb Softwares Cross Site Scripting Vulrnability

mailing-list

x_refsource_BUGTRAQ

27163

third-party-advisory

x_refsource_SECUNIA

ADV-2007-3452

vdb-entry

x_refsource_VUPEN

37651

vdb-entry

x_refsource_OSVDB

3208

third-party-advisory

x_refsource_SREASON

25981

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-5370

Description

Affected Products

References