CVE-2007-1174

Name of the Vulnerable Software and Affected Versions WebAPP versions prior to 20070214

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to unspecified fields in user profiles.

Recommendations For versions prior to 20070214, update to a version released after 20070214 to resolve the issue. As a temporary workaround, consider restricting access to user profiles until the update is applied. Avoid using unspecified fields in user profiles that may be related to the XSS vulnerabilities until the issue is resolved.