EDB-30937
webappsphpVERIFIED
Limbo CMS 1.0.4 - 'com_option' Cross-Site Scripting
CVE-2007-6564
Omer Singer12/25/2007
説明
Cross-site scripting (XSS) vulnerability in admin.php in Limbo CMS 1.0.4.2 allows remote attackers to inject arbitrary web script or HTML via the com_option parameter.
AI分析AIによる分析
影響を受ける製品
limbo_cmslimbo_cms
1.0.4.2
利用可能なエクスプロイト (1)
参照
- http://secunia.com/advisories/28190Vendor Advisory
- http://www.digitrustgroup.com/advisories/web-application-security-limbo-cms.htmlExploit
- http://www.osvdb.org/39642
- http://www.securityfocus.com/bid/27027Exploit
- http://www.vupen.com/english/advisories/2007/4317
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39207
- http://secunia.com/advisories/28190Vendor Advisory
- http://www.digitrustgroup.com/advisories/web-application-security-limbo-cms.htmlExploit
- http://www.osvdb.org/39642
- http://www.securityfocus.com/bid/27027Exploit
- http://www.vupen.com/english/advisories/2007/4317
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39207