CVE-2007-5459

Cross-site scripting (XSS) vulnerability in the sidebar HTML page in the MouseoverDictionary before 0.6.2 extension for Mozilla Firefox allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Published: Oct 14, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-5459
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
itirou_maruta / mouseoverdictionary	-	0.6.x
mozilla / firefox	2.0	2.0.x

http://jvn.jp/jp/JVN%2363304072/index.html
http://maru.bonyari.jp/mouseoverdictionary/
http://osvdb.org/40475
http://secunia.com/advisories/27195
http://www.securityfocus.com/bid/26053
https://exchange.xforce.ibmcloud.com/vulnerabilities/37184

Vulnerability Database

290,476

CVE-2007-5459