EDB-30844
webappsaspVERIFIED
Absolute News Manager .NET 5.1 - '/pages/default.aspx?template' Cross-Site Scripting
CVE-2007-6270
Adrian Pastor12/4/2007
CVE-2007-6270
NONEMultiple cross-site scripting (XSS) vulnerabilities in Absolute News Manager.NET 5.1 allow remote attackers to inject arbitrary web script or HTML via the (1) rmore parameter to xlaabsolutenm.aspx and
게시됨: 12/7/2007업데이트됨: 4/9/2025
설명
Multiple cross-site scripting (XSS) vulnerabilities in Absolute News Manager.NET 5.1 allow remote attackers to inject arbitrary web script or HTML via the (1) rmore parameter to xlaabsolutenm.aspx and the (2) template parameter to pages/default.aspx.
AI 분석AI 기반
영향받는 제품
xiglaabsolute_news_manager.net
5.1
사용 가능한 익스플로잇 (2)
참조
- http://marc.info/?l=bugtraq&m=119678724111351&w=2
- http://osvdb.org/40577
- http://osvdb.org/40578
- http://secunia.com/advisories/27923Vendor Advisory
- http://www.procheckup.com/Vulnerability_PR07-39.php
- http://www.securityfocus.com/bid/26692ExploitPatch
- http://www.xigla.com/news/default.aspx
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38872
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38873
- http://marc.info/?l=bugtraq&m=119678724111351&w=2
- http://osvdb.org/40577
- http://osvdb.org/40578
- http://secunia.com/advisories/27923Vendor Advisory
- http://www.procheckup.com/Vulnerability_PR07-39.php
- http://www.securityfocus.com/bid/26692ExploitPatch
- http://www.xigla.com/news/default.aspx
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38872
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38873