CVE-2007-6306

Name of the Vulnerable Software and Affected Versions JFreeChart version 1.0.8

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the image map feature. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via specific attributes, including the chart name, chart tool tip text, or attributes of a chart area such as href, shape, or coords.

Recommendations For JFreeChart version 1.0.8, consider disabling the image map feature until a patch is available to prevent exploitation of the XSS vulnerabilities. Restrict input for chart names, tool tip texts, and chart area attributes to minimize the risk of arbitrary script injection.