CVE-2007-5990
published 2007-11-15CVE-2007-5990: Cross-site scripting (XSS) vulnerability in ExoPHPdesk allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a user…
PriorityP415medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
1.26%
66.0th percentile
Cross-site scripting (XSS) vulnerability in ExoPHPdesk allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a user profile, possibly the (1) name and (2) website parameters to register.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| exo | exophpdesk | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://osvdb.org/38672http://secunia.com/advisories/27638http://securityreason.com/securityalert/3368http://www.securityfocus.com/archive/1/483673/100/0/threadedhttp://www.securityfocus.com/bid/26431http://www.securityfocus.com/bid/26453https://exchange.xforce.ibmcloud.com/vulnerabilities/38447http://osvdb.org/38672http://secunia.com/advisories/27638http://securityreason.com/securityalert/3368http://www.securityfocus.com/archive/1/483673/100/0/threadedhttp://www.securityfocus.com/bid/26431http://www.securityfocus.com/bid/26453https://exchange.xforce.ibmcloud.com/vulnerabilities/38447
2007-11-15
Published