CVE-2007-3501 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-3501

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in CMD_USER_STATS in DirectAdmin 1.30.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the domain parameter, a different vector than CVE-2007-1508.

Affected Software

Name	Vendor	Start Version	End Version
Directadmin	Directadmin	*	1.30.1 (including)

References

http://osvdb.org/36339
http://pridels-team.blogspot.com/2007/06/directadmin-xss-vuln.html
http://secunia.com/advisories/25881
http://www.securityfocus.com/bid/24688
http://www.vupen.com/english/advisories/2007/2389
https://exchange.xforce.ibmcloud.com/vulnerabilities/35177