CVE-2007-3134 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in atomPhotoBlog.php in Atom PhotoBlog 1.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) Your Name (2) Your Homepage and (3) Your Comment fields when using \Approve Comments.\

Reference

http://osvdb.org/37046 http://secunia.com/advisories/25562 http://sourceforge.net/project/shownotes.php?group_id=186464&release_id=514101 https://exchange.xforce.ibmcloud.com/vulnerabilities/34767