Vulnerabilities > CVE-2007-0846 - Input Validation vulnerability in OTSCMS
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting (XSS) vulnerability in forum.php in Open Tibia Server CMS (OTSCMS) 2.1.5 and earlier allows remote attackers to inject arbitrary HTML or web script via the name parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |
Exploit-Db
description | OTSCMS <= 2.1.5 (SQL/XSS) Multiple Remote Vulnerabilities. CVE-2007-0846,CVE-2007-0847. Webapps exploit for php platform |
file | exploits/php/webapps/3283.txt |
id | EDB-ID:3283 |
last seen | 2016-01-31 |
modified | 2007-02-07 |
platform | php |
port | |
published | 2007-02-07 |
reporter | GregStar |
source | https://www.exploit-db.com/download/3283/ |
title | otscms <= 2.1.5 sql/XSS Multiple Vulnerabilities |
type | webapps |