Vulnerabilities > CVE-2007-0846 - Unspecified vulnerability in Open Tibia Server CMS Open Tibia Server CMS
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN open-tibia-server-cms
exploit available
Summary
Cross-site scripting (XSS) vulnerability in forum.php in Open Tibia Server CMS (OTSCMS) 2.1.5 and earlier allows remote attackers to inject arbitrary HTML or web script via the name parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 4 |
Exploit-Db
| description | OTSCMS <= 2.1.5 (SQL/XSS) Multiple Remote Vulnerabilities. CVE-2007-0846,CVE-2007-0847. Webapps exploit for php platform |
| file | exploits/php/webapps/3283.txt |
| id | EDB-ID:3283 |
| last seen | 2016-01-31 |
| modified | 2007-02-07 |
| platform | php |
| port | |
| published | 2007-02-07 |
| reporter | GregStar |
| source | https://www.exploit-db.com/download/3283/ |
| title | otscms <= 2.1.5 sql/XSS Multiple Vulnerabilities |
| type | webapps |
References
- http://osvdb.org/33170
- http://osvdb.org/33170
- http://secunia.com/advisories/24116
- http://secunia.com/advisories/24116
- http://www.securityfocus.com/bid/22450
- http://www.securityfocus.com/bid/22450
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32324
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32324
- https://www.exploit-db.com/exploits/3283
- https://www.exploit-db.com/exploits/3283