Vulnerabilities > CVE-2007-0969 - Input Validation vulnerability in WebTester

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

webtester

NVD

Published: 2007-02-16

Updated: 2018-10-16

Summary

Multiple cross-site scripting (XSS) vulnerabilities in WebTester 5.0.20060927 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to POST parameters to multiple files.

Vulnerable Configurations

Part	Description	Count
Application	Webtester Webtester Webtester *	1

References

http://osvdb.org/33202
http://secunia.com/advisories/24157
http://securityreason.com/securityalert/2261
http://www.securityfocus.com/archive/1/460078/100/0/threaded
http://www.securityfocus.com/bid/22559
http://www.vupen.com/english/advisories/2007/0633
https://exchange.xforce.ibmcloud.com/vulnerabilities/32492