Vulnerabilities > CVE-2007-3364 - Cross-Site Scripting vulnerability in Myserver 0.8.9

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

myserver

exploit available

NVD

Published: 2007-06-22

Updated: 2018-10-16

Summary

Cross-site scripting (XSS) vulnerability in the cgi-bin/post.mscgi sample page in MyServer 0.8.9 allows remote attackers to inject arbitrary web script or HTML via the body content.

Vulnerable Configurations

Part	Description	Count
Application	Myserver Myserver Myserver 0.8.9	1

Exploit-Db

description	MyServer 0.9.8 Post.MSCGI Cross-Site Scripting Vulnerability. CVE-2007-3364. Remote exploits for multiple platform
id	EDB-ID:30222
last seen	2016-02-03
modified	2007-01-02
published	2007-01-02
reporter	Prili
source	https://www.exploit-db.com/download/30222/
title	MyServer 0.9.8 Post.MSCGI Cross-Site Scripting Vulnerability

References

http://osvdb.org/36340
http://osvdb.org/37506
http://securityreason.com/securityalert/2823
http://www.securityfocus.com/archive/1/471915/100/0/threaded
http://www.securityfocus.com/bid/24583
https://exchange.xforce.ibmcloud.com/vulnerabilities/34975