PT-2007-5340 · Mitridat · Mitridat Email Form Processor Pro

Published

2007-08-03

Updated

2018-10-15

CVE-2007-4144

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions MitriDAT eMail Form Processor Pro (affected versions not specified)

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the base path parameter. This issue is possibly related to the formprocessorpro.php file in the PHP version and the formprocessorpro.pl file in the Perl version of the product.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2007-4144

Affected Products

Mitridat Email Form Processor Pro

PT-2007-5340 · Mitridat · Mitridat Email Form Processor Pro

CVE-2007-4144

Weakness Enumeration

Related Identifiers

Affected Products

References · 6