Multiple cross-site scripting (XSS) vulnerabilities in links.php in Beehive Forum 0.7.1 allow remote attackers to inject arbitrary web script or HTML via the (1) viewmode, (2) fid, and (3) sort_dir parameters, different vectors than CVE-2005-4460.
References
Configurations
History
21 Nov 2024, 00:32
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/36380 - | |
References | () http://secunia.com/advisories/25634 - Vendor Advisory | |
References | () http://www.dragoslungu.com/2007/06/10/beehive-zero-vulnerabilities-myth-busted/ - | |
References | () http://www.securityfocus.com/bid/24413 - | |
References | () http://www.vupen.com/english/advisories/2007/2146 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/34827 - |
Information
Published : 2007-06-14 22:30
Updated : 2024-11-21 00:32
NVD link : CVE-2007-3212
Mitre link : CVE-2007-3212
CVE.ORG link : CVE-2007-3212
JSON object : View
Products Affected
beehive_forum
- beehive_forum
CWE