Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2007-3328

Published: 21/06/2007 Updated: 29/07/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Interact

Vulnerability Summary

Multiple cross-site scripting (XSS) vulnerabilities in Interact 2.4 beta 1 allow remote malicious users to inject arbitrary web script or HTML via the (1) module_key parameter to (a) kb/kb.php, (b) quiz/runquiz.php, (c) quiz/quiz.php, (d) forum/forum.php, (e) forum/byname.php, and (f) journal/journalview.php in modules/, and unspecified other scripts; the (2) tag_key parameter to modules/journal/journalview.php; the (3) user_group_key parameter to (g) users/secureaccounts.php; and (4) the request_uri parameter to (h) login.php.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

interact interact 2.4_beta_1

References

NVD-CWE-Otherhttp://pridels-team.blogspot.com/2007/06/interact-multiple-xss-vuln.htmlhttp://www.securityfocus.com/bid/24573http://osvdb.org/36926http://osvdb.org/36921http://osvdb.org/36924http://osvdb.org/36925http://osvdb.org/36923http://osvdb.org/36929http://osvdb.org/36927http://osvdb.org/36928http://osvdb.org/36922https://exchange.xforce.ibmcloud.com/vulnerabilities/34958https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2024-34490SQL injectionCVE-2024-34488CVE-2024-4507CVE-2023-7028CVE-2024-23187TCPCVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook