Launchpad CVE tracker

CVE 2007-2739

Cross-site scripting (XSS) vulnerability in xajax before 0.2.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Related bugs and status

CVE-2007-2739 (Candidate) is related to these bugs:

Bug #312882: Please sync php-xajax (0.2.5-4) (universe) from debian unstable main.

Summary				In	Importance	Status
	312882	Please sync php-xajax (0.2.5-4) (universe) from debian unstable main.		php-xajax (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://sourceforge.net...
SECUNIA: 25299
OSVDB: 36174
DEBIAN: DSA-1692
SECUNIA: 33265
VUPEN: ADV-2007-1841
XF: xajax-xajaxinc-xss(34323)

Launchpad.net

CVE 2007-2739

Related bugs and status

Related bugs

References