CVE-2007-6574 (Open Source Learning and Knowledge Management Tool)

CVE-2007-6574 (Open Source Learning and Knowledge Management Tool)
BugsAlert Home > CVE-2007-6574 (Open Source Learning and Knowledge Management Tool)




Multiple cross-site scripting (XSS) vulnerabilities in Dokeos 1.8.4 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the origin parameter to work/work.php in a display_upload_form action, or the forum parameter to (2) forum/viewforum.php or (3) forum/viewthread.php. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6574 Learn more about CVE-2007-6574 (Open Source Learning and Knowledge Management Tool)


Tags: cve-2007-6574 open source learning knowledge management tool

Related Items
HP Tru64 UNIX SSH SFTP Server Vulnerability
Slackware update for mozilla-firefox
Brief: Opera update nixes critical flaws
phpMyAdmin "sort_by" PHP Code Execution
Vuln: Linux Kernel IPv6 TCP Sockets Local Denial of Service Vulnerability
Mahara HTML File Upload Script Insertion Vulnerability
FrSIRT - Ruby on Rails ":limit" and ":offset" SQL Injection Vulnerabilities