CVE-2007-0144 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-0144

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in search.asp in Digitizing Quote And Ordering System 1.0 allows remote authenticated attackers to inject arbitrary web script or HTML via the ordernum parameter.

Affected Software

Name	Vendor	Start Version	End Version
Digitizing_quote_and_ordering_system	Digitizing_quote_and_ordering_system	1.0 (including)	1.0 (including)

References

http://osvdb.org/31690
http://secunia.com/advisories/23652
https://exchange.xforce.ibmcloud.com/vulnerabilities/31321
https://www.exploit-db.com/exploits/3089