Vulnerabilities > CVE-2007-4433 - Cross-Site Scripting vulnerability in Aspindir Text File Search 0

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

aspindir

NVD

Published: 2007-08-20

Updated: 2008-11-15

Summary

Cross-site scripting (XSS) vulnerability in textfilesearch.aspx in the Text File Search ASP.NET edition allows remote attackers to inject arbitrary web script or HTML via the search field.

Vulnerable Configurations

Part	Description	Count
Application	Aspindir Aspindir Text File Search 0	1

References

http://osvdb.org/37734
http://securityreason.com/securityalert/3048
http://www.packetstormsecurity.org/0708-exploits/aspnet-xss.txt
http://www.securityfocus.com/bid/25349