Vulnerabilities > CVE-2007-3212 - Cross-Site Scripting vulnerability in Beehive Forum Beehive Forum 0.7.1

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
beehive-forum
exploit available
NVD
Published: 2007-06-14
Updated: 2017-07-29

Summary

Multiple cross-site scripting (XSS) vulnerabilities in links.php in Beehive Forum 0.7.1 allow remote attackers to inject arbitrary web script or HTML via the (1) viewmode, (2) fid, and (3) sort_dir parameters, different vectors than CVE-2005-4460.

Vulnerable Configurations

Part Description Count
Application
Beehive_Forum
1

Exploit-Db

descriptionBeehive Forum 0.7.1 Links.PHP Multiple Cross-Site Scripting Vulnerabilities. CVE-2007-3212. Webapps exploit for php platform
idEDB-ID:30170
last seen2016-02-03
modified2007-06-11
published2007-06-11
reporterOry Segal
sourcehttps://www.exploit-db.com/download/30170/
titleBeehive Forum 0.7.1 Links.PHP Multiple Cross-Site Scripting Vulnerabilities

References