CVE-2007-4595

Name of the Vulnerable Software and Affected Versions Mayaa versions prior to 1.1.12

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML under certain circumstances. This includes situations where there is a lack of charset specification within a META element or when a META element specifies an unrecognized charset, leading to automatic character set recognition by the web browser. This can be triggered by improper handling of UTF-7 data.

Recommendations For versions prior to 1.1.12, update to version 1.1.12 or later to resolve the issue.