CVE-2007-1494

Cross-site scripting (XSS) vulnerability in NukeSentinel before 2.5.06 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the "filters for https:// and http://".

Published: Mar 16, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-1494
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
nukescripts / nukesentinel	-	2.5.05.x

http://osvdb.org/35078
http://www.nukescripts.net/modules.php?name=Downloads&op=getit&lid=1055

Vulnerability Database

CVE-2007-1494