CVE-2007-2090 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-2090

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in index.php in TuMusika Evolution 1.6 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.

Affected Software

Name	Vendor	Start Version	End Version
Tumusika_evolution	Tumusika_evolution	1.6 (including)	1.6 (including)

References

http://secunia.com/advisories/24874
http://securityreason.com/securityalert/2585
http://www.securityfocus.com/archive/1/465515/100/0/threaded
http://www.vupen.com/english/advisories/2007/1374
https://exchange.xforce.ibmcloud.com/vulnerabilities/33593