Vulnerability Details CVE-2007-0529
Cross-site scripting (XSS) vulnerability in index.html (aka the administration page) in PHP Link Directory (phpLD) 3.0.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted link, which is triggered when the administrator uses the "Validate Links" functionality.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.6%
CVSS Severity
CVSS v2 Score 4.3
References
- http://osvdb.org/32952
- http://www.securityfocus.com/archive/1/457672/100/0/threaded
- http://www.smilehouse.com/advisory/phplinkdirectory_070121.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31662
- http://osvdb.org/32952
- http://www.securityfocus.com/archive/1/457672/100/0/threaded
- http://www.smilehouse.com/advisory/phplinkdirectory_070121.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31662
Products affected by CVE-2007-0529
-
cpe:2.3:a:php_link_directory:php_link_directory:*