CVE-2007-4090

Multiple cross-site scripting (XSS) vulnerabilities in Vikingboard 0.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the URI to inc/lib/screen.php or (2) the title parameter to post.php. NOTE: vector 2 might overlap CVE-2006-6283. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Published: Jul 30, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-4090
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
vikingboard / vikingboard	0.1.2	0.1.2.x

http://osvdb.org/36904
http://osvdb.org/36905
http://secunia.com/advisories/26196
http://secwatch.org/advisories/1018567/

Vulnerability Database

290,206

CVE-2007-4090