EDB-30853
webappsphpVERIFIED
OpenNewsletter 2.5 - 'Compose.php' Cross-Site Scripting
CVE-2007-6301
Manu12/6/2007
CVE-2007-6301
NONECross-site scripting (XSS) vulnerability in compose.php in OpenNewsletter 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the type parameter.
Publicado: 12/10/2007Atualizado: 4/9/2025
Descrição
Cross-site scripting (XSS) vulnerability in compose.php in OpenNewsletter 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the type parameter.
Análise IADesenvolvido por IA
Produtos Afetados
open_newsletteropen_newsletter
Exploits Disponíveis (1)
Referências
- http://secunia.com/advisories/27966
- http://securityreason.com/securityalert/3427
- http://www.securityfocus.com/archive/1/484680/100/0/threaded
- http://www.securityfocus.com/archive/1/484687/100/0/threaded
- http://www.securityfocus.com/bid/26745
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38902
- http://secunia.com/advisories/27966
- http://securityreason.com/securityalert/3427
- http://www.securityfocus.com/archive/1/484680/100/0/threaded
- http://www.securityfocus.com/archive/1/484687/100/0/threaded
- http://www.securityfocus.com/bid/26745
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38902