Claroline Other Vulnerability (CVE-2007-3517)

Description

Multiple cross-site scripting (XSS) vulnerabilities in Claroline 1.8.3 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF) to (1) index.php, (2) demo/claroline170/index.php, and possibly other scripts.

Remediation

References

CVE-2007-3517

Related Vulnerabilities

MySQL CVE-2023-22104 Vulnerability (CVE-2023-22104)

WordPress Plugin WP AutoComplete Search SQL Injection (1.0.4)

SharePoint CVE-2019-0562 Vulnerability (CVE-2019-0562)

Apache HTTP Server Other Vulnerability (CVE-2003-0253)

PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-7486)

Severity

Medium

Classification