Vulnerabilities > CVE-2007-3989 - Input Validation vulnerability in ASP Indir Dora Emlak 1.0

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
asp-indir
exploit available
NVD
Published: 2007-07-25
Updated: 2017-07-29

Summary

Multiple cross-site scripting (XSS) vulnerabilities in default.asp in Dora Emlak 1.0, when the goster parameter is set to iletisim, allow remote attackers to inject arbitrary web script or HTML via the (1) Adiniz and (2) Soyadiniz parameters; and possibly other unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Configurations

Part Description Count
Application
Asp_Indir
1

Exploit-Db

descriptionDora Emlak 1.0 Script Multiple Input Validation Vulnerabilities. CVE-2007-3989. Webapps exploit for asp platform
idEDB-ID:30327
last seen2016-02-03
modified2007-07-23
published2007-07-23
reporterGeFORC3
sourcehttps://www.exploit-db.com/download/30327/
titleDora Emlak 1.0 Script Multiple Input Validation Vulnerabilities

References