NVD

Id
56343  
Name
CVE-2007-4212  
Description
Multiple cross-site scripting (XSS) vulnerabilities in the Search Module in PHP-Nuke allow remote attackers to inject arbitrary web script or HTML via a trailing "<" instead of a ">" in (1) the onerror attribute of an IMG element, (2) the onload attribute of an IFRAME element, or (3) redirect users to other sites via the META tag.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2007-08-07  
Modified Date
2009-10-14  
Seq
2007-4212  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
286923 56343 CVE-2007-4212 2974  View
286924 56343 CVE-2007-4212 20070801 PHP-Nuke (ALL versions) Multiple XSS and HTML injection  View
286925 56343 CVE-2007-4212 25171  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
57251 JVNDB-2007-005943 PHP-Nuke の Search モジュールにおけるクロスサイトスクリプティングの脆弱性 PHP-Nuke の Search モジュールには、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2007-4212 27567 CVE-2007-4212 56343 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005943.html 2007-08-07 2012-12-20 View