RSS   Vulnerabilities for 'Dnewsweb'   RSS

2007-10-11
 
CVE-2007-5370

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in cgi-bin/dnewsweb.exe in NetWin DNewsWeb (DNews News Server) 57e1 allow remote attackers to inject arbitrary web script or HTML via the (1) group or (2) utag parameter.

 

 >>> Vendor: Netwin 12 Products
Dmail
Dnews
Cwmail
Dmailweb
Netauth
Surgeftp
Webnews
Surgeldap
Surgemail
Webmail
Dnewsweb
Smsgate


Copyright 2022, cxsecurity.com

 

Back to Top