Cross-Site Scripting Vulnerabilities in Alcatel OmniVista 4760
CVE-2007-5190

Currently unrated

Key Information:

Vendor

Alcatel-lucent

Status
Omnivista
Vendor
CVE Published:
22 October 2007

What is CVE-2007-5190?

Alcatel OmniVista 4760 R4.2 and earlier versions exhibit multiple cross-site scripting vulnerabilities, allowing remote attackers to inject arbitrary web scripts or HTML. This can be exploited via two specific parameters: the 'action' parameter in php-bin/Webclient.php and the 'Langue' parameter in the default URI. Successful exploitation may lead to unauthorized access to sensitive information and compromise user security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://securityreason.com/securityalert/3280
third-party-advisoryx_refsource_SREASON
http://www1.alcatel-lucent.com/psirt/statements/2007003/4...
x_refsource_CONFIRM
http://www.s21sec.com/avisos/s21sec-038-en.txt
x_refsource_MISC

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.