CVE-2007-1176 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in WebAPP before 0.9.9.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) Gallery Comments pages (2) Feedback pages (3) Search Results pages and (4) the Statistics Log viewer.

Reference

http://osvdb.org/33276 http://osvdb.org/33288 http://osvdb.org/33289 http://osvdb.org/33290 http://secunia.com/advisories/24080 http://www.securityfocus.com/bid/22563 http://www.vupen.com/english/advisories/2007/0604 http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=250 https://exchange.xforce.ibmcloud.com/vulnerabilities/32498 https://exchange.xforce.ibmcloud.com/vulnerabilities/32499 https://exchange.xforce.ibmcloud.com/vulnerabilities/32526