CVE-2007-3693 Information

Description

Cross-site scripting (XSS) vulnerability in Gobi as of 20070711 built on Helma allows remote attackers to inject arbitrary web script or HTML via the q parameter to the search function.

Reference

http://int21.de/cve/CVE-2007-3693-gobi.txt http://www.securityfocus.com/bid/24880