CVE-2007-2808

Currently unrated

Key Information:

Vendor: Gnu
Status: Gnats; Gnatsweb
Vendor: CVE Published:; 22 May 2007

Summary

Cross-site scripting (XSS) vulnerability in gnatsweb.pl in Gnatsweb 4.00 and Gnats 4.1.99 allows remote attackers to inject arbitrary web script or HTML via the database parameter.

References

http://osvdb.org/36224

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/25333

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/28743

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
May 22, 2007
Vulnerability Reserved
May 22, 2007