CVE-2007-4297 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-4297

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Multiple cross-site scripting (XSS) vulnerabilities in yorumkaydet.asp in Dersimiz Haber Ekleme Modulu allow remote attackers to inject arbitrary web script or HTML via the (1) yazan, (2) mail, and (3) yorum parameters. NOTE: some of these details are obtained from third party information.

Affected Software

Name	Vendor	Start Version	End Version
Dersimiz_haber_ekleme_modulu	Aspindir	*	*

References

http://osvdb.org/37537
http://secunia.com/advisories/26380
http://www.packetstormsecurity.org/0708-exploits/dersimiz-xss.txt
http://www.securityfocus.com/bid/25250
http://www.vupen.com/english/advisories/2007/2831
https://exchange.xforce.ibmcloud.com/vulnerabilities/35911
http://osvdb.org/37537
http://secunia.com/advisories/26380
http://www.packetstormsecurity.org/0708-exploits/dersimiz-xss.txt
http://www.securityfocus.com/bid/25250
http://www.vupen.com/english/advisories/2007/2831
https://exchange.xforce.ibmcloud.com/vulnerabilities/35911