EzPublish Cross Site Scripting Bugs Network Vulnerability

Summary

ezPublish 2.2.7 has a cross site scripting bug. An attacker may use it to perform a cross site scripting attack on this host. In addition to this, another flaw may allow an attacker store hostile HTML code on the server side, which will be executed by the browser of the administrative user when he looks at the server logs.

Solution

Upgrade to a newer version.

Severity

Classification

CVE CVE-2003-0310

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache Tomcat TroubleShooter Servlet Installed
Apache Tomcat NIO Connector Denial of Service Vulnerability
AbanteCart Multiple Cross-Site Scripting Vulnerabilities
Apache Archiva Cross Site Request Forgery Vulnerability
Apache Web Server ETag Header Information Disclosure Weakness

ezPublish Cross Site Scripting Bugs

Take action and discover your vulnerabilities