CVE-2007-2887 Information

Description

Cross-site scripting (XSS) vulnerability in index.php in Web Icerik Yonetim Sistemi (WIYS) 1.0 allows remote attackers to inject arbitrary web script or HTML via the No parameter in the Sayfa page.

Reference

http://osvdb.org/36329 http://osvdb.org/38346 http://secunia.com/advisories/25407 http://securityreason.com/securityalert/2742 http://www.securityfocus.com/archive/1/469500/100/0/threaded http://www.securityfocus.com/bid/24117