Vulnerabilities > CVE-2007-3414 - Unspecified vulnerability in Access2Asp

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

access2asp

NVD

Published: 2007-06-26

Updated: 2024-11-21

Summary

Multiple cross-site scripting (XSS) vulnerabilities in access2asp 4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) od and (2) search parameters to (a) suppliersList.asp and (b) contactsList.asp.

Vulnerable Configurations

Part	Description	Count
Application	Access2Asp Access2Asp Access2Asp *	1

References

http://pridels-team.blogspot.com/2007/06/access2asp-xss-vuln.html
http://pridels-team.blogspot.com/2007/06/access2asp-xss-vuln.html
http://secunia.com/advisories/25807
http://secunia.com/advisories/25807
http://www.osvdb.org/37750
http://www.osvdb.org/37750
http://www.osvdb.org/37751
http://www.osvdb.org/37751
http://www.vupen.com/english/advisories/2007/2371
http://www.vupen.com/english/advisories/2007/2371
https://exchange.xforce.ibmcloud.com/vulnerabilities/35025
https://exchange.xforce.ibmcloud.com/vulnerabilities/35025