PT-2007-3929 · Openld · Openld
Published
2007-05-11
·
Updated
2024-02-14
·
CVE-2007-2610
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
OpenLD versions prior to 1.1.9
OpenLD 1.1-modified versions prior to 1.1-modified3
Description
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in the Search feature, possibly the
term parameter.Recommendations
For OpenLD versions prior to 1.1.9, update to version 1.1.9 or later.
For OpenLD 1.1-modified versions prior to 1.1-modified3, update to version 1.1-modified3 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Openld