Cross-site Scripting Vulnerability in Pluxml by Pluxml
CVE-2007-3542

Currently unrated

Key Information:

Vendor: Pluxml
Status: Pluxml
Vendor: CVE Published:; 3 July 2007

What is CVE-2007-3542?

The vulnerability in Pluxml 0.3.1 resides in the admin/auth.php file, where inadequate input validation allows an attacker to inject malicious web scripts or HTML through the 'msg' parameter. This exploitation can lead to unauthorized access and potential compromise of the web application, emphasizing the need for timely security updates and input sanitization measures.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/35015

vdb-entryx_refsource_XF

https://www.exploit-db.com/exploits/4096

exploitx_refsource_EXPLOIT-DB

http://osvdb.org/38890

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Jul 3, 2007
Vulnerability Reserved
Jul 3, 2007

JSON