CVE-2007-3291 Information

Description

Cross-site scripting (XSS) vulnerability in LiveCMS 3.4 and earlier allows remote attackers to inject arbitrary web script or HTML via an article name possibly involving the titulo parameter in article.php.

Reference

http://osvdb.org/37491 http://secunia.com/advisories/25744 http://www.securityfocus.com/bid/24580 https://exchange.xforce.ibmcloud.com/vulnerabilities/35148 https://www.exploit-db.com/exploits/4082