Vulnerabilities > CVE-2007-1291 - Unspecified vulnerability in Tyger BUG Tracking System 1.1.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN tyger
exploit available
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Tyger Bug Tracking System (TygerBT) 1.1.3 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) Login.php and (2) Register.php.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description Tyger Bug Tracking System 1.1.3 Login.php PATH_INFO Parameter XSS. CVE-2007-1291. Webapps exploit for php platform id EDB-ID:29704 last seen 2016-02-03 modified 2007-02-26 published 2007-02-26 reporter CorryL source https://www.exploit-db.com/download/29704/ title Tyger Bug Tracking System 1.1.3 Login.php PATH_INFO Parameter XSS description Tyger Bug Tracking System 1.1.3 Register.php PATH_INFO Parameter XSS. CVE-2007-1291. Webapps exploit for php platform id EDB-ID:29705 last seen 2016-02-03 modified 2007-02-26 published 2007-02-26 reporter CorryL source https://www.exploit-db.com/download/29705/ title Tyger Bug Tracking System 1.1.3 Register.php PATH_INFO Parameter XSS
References
- http://secunia.com/advisories/24385
- http://secunia.com/advisories/24385
- http://securityreason.com/securityalert/2356
- http://securityreason.com/securityalert/2356
- http://www.securityfocus.com/archive/1/461801/100/0/threaded
- http://www.securityfocus.com/archive/1/461801/100/0/threaded
- http://www.securityfocus.com/bid/22799
- http://www.securityfocus.com/bid/22799
- http://www.vupen.com/english/advisories/2007/0822
- http://www.vupen.com/english/advisories/2007/0822
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32792
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32792