CVE-2007-4024
published 2007-07-26CVE-2007-4024: Cross-site scripting (XSS) vulnerability in W1L3D4_aramasonuc.asp in W1L3D4 Philboard 0.3 allows remote attackers to inject arbitrary web script or HTML via…
PriorityP417medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
1.49%
71.0th percentile
Cross-site scripting (XSS) vulnerability in W1L3D4_aramasonuc.asp in W1L3D4 Philboard 0.3 allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| philboard | philboard | — | — |
| philboard | philboard | — | — |
| w1l3d4 | philboard | <= 0.3 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-6938-c4pv-f9x4: Cross-site scripting (XSS) vulnerability in search
ghsa_unreviewed·2022-05-17·CVSS 4.3
CVE-2008-5193 [MEDIUM] CWE-79 GHSA-6938-c4pv-f9x4: Cross-site scripting (XSS) vulnerability in search
Cross-site scripting (XSS) vulnerability in search.asp in W1L3D4 Philboard 1.14 and 1.2 allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter. NOTE: this might overlap CVE-2007-4024.
GHSA
GHSA-5gq7-5xj7-p4w2: Cross-site scripting (XSS) vulnerability in W1L3D4_aramasonuc
ghsa_unreviewed·2022-05-01
CVE-2007-4024 [MEDIUM] GHSA-5gq7-5xj7-p4w2: Cross-site scripting (XSS) vulnerability in W1L3D4_aramasonuc
Cross-site scripting (XSS) vulnerability in W1L3D4_aramasonuc.asp in W1L3D4 Philboard 0.3 allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/26182http://www.securityfocus.com/bid/25055http://www.vupen.com/english/advisories/2007/2645https://exchange.xforce.ibmcloud.com/vulnerabilities/35598http://secunia.com/advisories/26182http://www.securityfocus.com/bid/25055http://www.vupen.com/english/advisories/2007/2645https://exchange.xforce.ibmcloud.com/vulnerabilities/35598
2007-07-26
Published