Vulnerabilities > CVE-2007-0969 - Input Validation vulnerability in WebTester
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
webtester
Summary
Multiple cross-site scripting (XSS) vulnerabilities in WebTester 5.0.20060927 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to POST parameters to multiple files.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://osvdb.org/33202
- http://secunia.com/advisories/24157
- http://securityreason.com/securityalert/2261
- http://www.securityfocus.com/archive/1/460078/100/0/threaded
- http://www.securityfocus.com/bid/22559
- http://www.vupen.com/english/advisories/2007/0633
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32492