Published: 16/05/2007 Updated: 16/10/2018

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 690

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS allow remote malicious users to inject arbitrary web script or HTML via the (1) path parameter to view/search/; or the (2) companyname, (3) country, (4) email, (5) firstname, (6) middlename, (7) required, (8) surname, or (9) title parameter to view/supplynews/.

Vulnerable Product	Search on Vulmon	Subscribe to Product
jetbox jetbox cms 2.1

source: wwwsecurityfocuscom/bid/23999/info Jetbox CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data Exploiting these issues could allow an attacker to steal cookie-based authentication credentials and to launch other attacks Jetbox CMS 21 is vulnerable htt ...

source: wwwsecurityfocuscom/bid/23999/info Jetbox CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data Exploiting these issues could allow an attacker to steal cookie-based authentication credentials and to launch other attacks Jetbox CMS 21 is vulnerable http:/ ...

NVD-CWE-Other http://www.securityfocus.com/bid/23999 http://securityreason.com/securityalert/2711 http://osvdb.org/37452 http://osvdb.org/37451 http://www.vupen.com/english/advisories/2007/1831 http://www.securityfocus.com/archive/1/468681/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/30042/

CVE-2007-2732

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect