CVE-2007-0791

2007-02-0619:00:00

mitre

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.009

Percentile

83.1%

JSON

Cross-site scripting (XSS) vulnerability in Atom feeds in Bugzilla 2.20.3, 2.22.1, and 2.23.3, and earlier versions down to 2.20.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

osvdb.org/33090

secunia.com/advisories/24031

securityreason.com/securityalert/2222

securitytracker.com/id?1017585

www.bugzilla.org/security/2.20.3/

www.securityfocus.com/archive/1/459025/100/0/threaded

www.securityfocus.com/bid/22380

www.vupen.com/english/advisories/2007/0477

exchange.xforce.ibmcloud.com/vulnerabilities/32248