Vulnerabilities > CVE-2007-1020 - Unspecified vulnerability in Cedstat 1.31
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN cedstat
exploit available
Summary
Cross-site scripting (XSS) vulnerability in index.php in CedStat 1.31 allows remote attackers to inject arbitrary web script or HTML via the hier parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description CedStat 1.31 index.php hier Parameter XSS. CVE-2007-1020. Webapps exploit for php platform id EDB-ID:29608 last seen 2016-02-03 modified 2007-02-16 published 2007-02-16 reporter sn0oPy source https://www.exploit-db.com/download/29608/ title CedStat 1.31 index.php hier Parameter XSS description CedStat 1.31 Index.PHP Cross-Site Scripting Vulnerability. CVE-2007-1020. Webapps exploit for php platform id EDB-ID:29624 last seen 2016-02-03 modified 2007-02-21 published 2007-02-21 reporter sn0oPy source https://www.exploit-db.com/download/29624/ title CedStat 1.31 Index.PHP Cross-Site Scripting Vulnerability
References
- http://forums.avenir-geopolitique.net/viewtopic.php?t=2672
- http://forums.avenir-geopolitique.net/viewtopic.php?t=2672
- http://osvdb.org/33734
- http://osvdb.org/33734
- http://securityreason.com/securityalert/2265
- http://securityreason.com/securityalert/2265
- http://www.securityfocus.com/archive/1/460260/100/0/threaded
- http://www.securityfocus.com/archive/1/460260/100/0/threaded
- http://www.securityfocus.com/bid/22588
- http://www.securityfocus.com/bid/22588
- http://www.securityfocus.com/bid/22653
- http://www.securityfocus.com/bid/22653
- http://www.vupen.com/english/advisories/2007/0680
- http://www.vupen.com/english/advisories/2007/0680
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32537
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32537