Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4
CVSSv2

CVE-2007-3839

Published: 17/07/2007 Updated: 05/09/2008
CVSS v2 Base Score: 4 | Impact Score: 4.9 | Exploitability Score: 4.9
VMScore: 356
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:N
Subscribe to Dr

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in takeprofedit.php in TBDev.NET DR 010306 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a javascript: URI in the avatar parameter. NOTE: this may be related to the tracker program in the Janitor package. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Product Search on Vulmon Subscribe to Product

tbdev.net dr 010306

tbdev.net dr 16-12-05-beta-1_161

tbdev.net dr 11-10-05-beta-sf1_1

References

NVD-CWE-Otherhttp://www.securityfocus.com/data/vulnerabilities/exploits/24923.txthttp://www.securityfocus.com/bid/24923http://secunia.com/advisories/26120https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651CVE-2024-34255elevation of privilegeCVE-2024-25529CVE-2024-4671NULL pointer dereferenceCVE-2024-25527template injectionCVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook