CVE-2007-2357 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-2357

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in mods/Core/result.php in SineCms 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the stringa parameter.

Affected Software

Name	Vendor	Start Version	End Version
Sinecms	Sinecms	2.3.4 (including)	2.3.4 (including)

References

http://osvdb.org/34172
http://secunia.com/advisories/25014
http://securityreason.com/securityalert/2649
http://www.securityfocus.com/archive/1/466965/100/0/threaded
http://www.securityfocus.com/bid/23682
http://www.vupen.com/english/advisories/2007/1559
https://exchange.xforce.ibmcloud.com/vulnerabilities/33919
http://osvdb.org/34172
http://secunia.com/advisories/25014
http://securityreason.com/securityalert/2649
http://www.securityfocus.com/archive/1/466965/100/0/threaded
http://www.securityfocus.com/bid/23682
http://www.vupen.com/english/advisories/2007/1559
https://exchange.xforce.ibmcloud.com/vulnerabilities/33919