EDB-30853
webappsphpVERIFIED
OpenNewsletter 2.5 - 'Compose.php' Cross-Site Scripting
CVE-2007-6301
Manu12/6/2007
CVE-2007-6301
NONECross-site scripting (XSS) vulnerability in compose.php in OpenNewsletter 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the type parameter.
게시됨: 12/10/2007업데이트됨: 4/9/2025
설명
Cross-site scripting (XSS) vulnerability in compose.php in OpenNewsletter 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the type parameter.
AI 분석AI 기반
영향받는 제품
open_newsletteropen_newsletter
사용 가능한 익스플로잇 (1)
참조
- http://secunia.com/advisories/27966
- http://securityreason.com/securityalert/3427
- http://www.securityfocus.com/archive/1/484680/100/0/threaded
- http://www.securityfocus.com/archive/1/484687/100/0/threaded
- http://www.securityfocus.com/bid/26745
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38902
- http://secunia.com/advisories/27966
- http://securityreason.com/securityalert/3427
- http://www.securityfocus.com/archive/1/484680/100/0/threaded
- http://www.securityfocus.com/archive/1/484687/100/0/threaded
- http://www.securityfocus.com/bid/26745
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38902