Vulnerability Details CVE-2007-5625
Cross-site scripting (XSS) vulnerability in filename.asp in ASP Site Search SearchSimon Lite 1.0 allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.057
EPSS Ranking 90.0%
CVSS Severity
CVSS v2 Score 4.3
References
- http://osvdb.org/38069
- http://secunia.com/advisories/27337
- http://securityreason.com/securityalert/3275
- http://www.securityfocus.com/archive/1/482570/100/0/threaded
- http://www.securityfocus.com/bid/26142
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37340
- http://osvdb.org/38069
- http://secunia.com/advisories/27337
- http://securityreason.com/securityalert/3275
- http://www.securityfocus.com/archive/1/482570/100/0/threaded
- http://www.securityfocus.com/bid/26142
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37340
Products affected by CVE-2007-5625
-
cpe:2.3:a:simongibson:asp_site_search_searchsimon_lite:1.0