NVD

Id
56208  
Name
CVE-2007-4077  
Description
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft Video Share Enterprise allow remote attackers to inject arbitrary web script or HTML via the (1) msg, (2) page, (3) viewkey, or (4) viewtype parameter to (a) view_video.php; the (5) next parameter to (b) signup.php; the (6) search_id parameter to (c) search_result.php; the (7) category or (8) page parameter to (d) video.php; the (9) receiver parameter to (e) compose.php; the (10) catgy parameter to (f) groups.php; the (11) channelname parameter to (g) siteadmin/channels.php; or the (12) uname parameter to (h) siteadmin/muser.php.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2007-07-30  
Modified Date
2008-11-15  
Seq
2007-4077  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
286314 56208 CVE-2007-4077 http://lostmon.blogspot.com/2007/07/alstrasoft-multiple-products-multiple.html  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
53741 JVNDB-2007-002433 AlstraSoft Video Share Enterprise におけるクロスサイトスクリプティングの脆弱性 AlstraSoft Video Share Enterprise には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2007-4077 27432 CVE-2007-4077 56208 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-002433.html 2007-07-30 2012-06-26 View