Vulnerabilities > CVE-2007-4083 - Cross-Site Scripting vulnerability in AskMe Pro
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
alstrasoft
Summary
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft AskMe Pro allow remote attackers to inject arbitrary web script or HTML via (1) the cat_id parameter to search.php or the (2) typ parameter to register.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |