Vulnerabilities > CVE-2007-4115 - Unspecified vulnerability in Itcms 0.2

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
itcms
exploit available
NVD
Published: 2007-07-31
Updated: 2024-11-21

Summary

Multiple cross-site scripting (XSS) vulnerabilities in IT!CMS (itcms) 0.2 allow remote attackers to inject arbitrary web script or HTML via the wndtitle parameter to (1) lang-en.php, (2) menu-ed.php, or (3) titletext-ed.php.

Vulnerable Configurations

Part Description Count
Application
Itcms
1

Exploit-Db

  • descriptionIT!CMS 0.2 titletext-ed.php wndtitle Parameter XSS. CVE-2007-4115. Webapps exploit for php platform
    idEDB-ID:30435
    last seen2016-02-03
    modified2007-07-30
    published2007-07-30
    reporterAria-Security Team
    sourcehttps://www.exploit-db.com/download/30435/
    titleIT!CMS 0.2 titletext-ed.php wndtitle Parameter XSS
  • descriptionIT!CMS 0.2 lang-en.php wndtitle Parameter XSS. CVE-2007-4115. Webapps exploit for php platform
    idEDB-ID:30433
    last seen2016-02-03
    modified2007-07-30
    published2007-07-30
    reporterAria-Security Team
    sourcehttps://www.exploit-db.com/download/30433/
    titleIT!CMS 0.2 lang-en.php wndtitle Parameter XSS
  • descriptionIT!CMS 0.2 menu-ed.php wndtitle Parameter XSS. CVE-2007-4115. Webapps exploit for php platform
    idEDB-ID:30434
    last seen2016-02-03
    modified2007-07-30
    published2007-07-30
    reporterAria-Security Team
    sourcehttps://www.exploit-db.com/download/30434/
    titleIT!CMS 0.2 menu-ed.php wndtitle Parameter XSS

References