CVE-2007-2805 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in index.php in ClientExec (CE) 3.0 beta2 and possibly other versions allow remote attackers to inject arbitrary web script or HTML via the (1) ticketID (2) view and (3) fuse parameters.

Reference

http://osvdb.org/37526 http://pridels-team.blogspot.com/2007/05/clientexec-xss-vuln.html http://www.securityfocus.com/bid/24061 https://exchange.xforce.ibmcloud.com/vulnerabilities/34390