CVE-2007-4175 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in index.php in OpenRat CMS 0.8-beta1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) subaction and (2) action parameters.

Reference

http://pridels-team.blogspot.com/2007/08/openrat-vuln.html http://www.securityfocus.com/bid/25169 https://exchange.xforce.ibmcloud.com/vulnerabilities/35748