CVE-2007-5477 Information

Description

Cross-site scripting (XSS) vulnerability in auth.w in djeyl.net WebMod 0.48 Half-Life Dedicated Server plugin allows remote attackers to inject arbitrary web script or HTML via the redir parameter.

Reference

http://osvdb.org/37833 http://secunia.com/advisories/27245 http://sla.ckers.org/forum/read.php?34411482msg-11482 http://www.attrition.org/pipermail/vim/2007-October/001833.html http://www.securityfocus.com/bid/26087 https://exchange.xforce.ibmcloud.com/vulnerabilities/37220