NVD

Id
53830  
Name
CVE-2007-1646  
Description
Multiple cross-site scripting (XSS) vulnerabilities in SubHub 2.3.0 allow remote attackers to inject arbitrary web script or HTML via (1) the searchtext parameter to (a) /search, or the (2) message parameter to (b) /calendar or (c) /subscribe.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2007-03-23  
Modified Date
2008-09-05  
Seq
2007-1646  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
272789 53830 CVE-2007-1646 2475  View
272790 53830 CVE-2007-1646 20070321 **SubHub v2.3.0**  View
272791 53830 CVE-2007-1646 subhub-search-xss(33161)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
56617 JVNDB-2007-005309 SubHub におけるクロスサイトスクリプティングの脆弱性 SubHub には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2007-1646 25001 CVE-2007-1646 53830 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005309.html 2007-03-23 2012-12-20 View