Security Advisory

CVE-2007-3887

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-07-18 23:00:00

Last updated 2024-08-07 14:37:04

Assigner mitre

State PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in mesaj_formu.asp in ASP Ziyaretci Defteri 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Isim, (2) Mesajiniz, and (3) E-posta fields. NOTE: these probably correspond to the isim, mesaj, and posta parameters to save.php.

← Browse all CVEs View on cve.org ↗