Vulnerabilities > CVE-2007-0183 - Cross-Site Scripting vulnerability in SUN Iplanet web Server 4.1
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting (XSS) vulnerability in /search in iPlanet Web Server 4.x allows remote attackers to inject arbitrary web script or HTML via the NS-max-records parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 21 |
Exploit-Db
description | iPlanet Web Server 4.1 Search Module Cross-Site Scripting Vulnerability. CVE-2007-0183. Remote exploits for multiple platform |
id | EDB-ID:29439 |
last seen | 2016-02-03 |
modified | 2007-01-09 |
published | 2007-01-09 |
reporter | Khalsa |
source | https://www.exploit-db.com/download/29439/ |
title | iPlanet Web Server 4.1 - Search Module Cross-Site Scripting Vulnerability |