Description
Multiple cross-site scripting (XSS) vulnerabilities in e107 0.7.5 allow remote attackers to inject arbitrary web script or HTML via the query string (PATH_INFO) in (1) contact.php, (2) download.php, (3) admin.php, (4) fpw.php, (5) news.php, (6) search.php, (7) signup.php, (8) submitnews.php, and (9) user.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Exploits (9)
exploitdb
WORKING POC
VERIFIED
by zark0vac · textwebappsphp
https://www.exploit-db.com/exploits/28556
exploitdb
WORKING POC
VERIFIED
by zark0vac · textwebappsphp
https://www.exploit-db.com/exploits/28554
exploitdb
WORKING POC
VERIFIED
by zark0vac · textwebappsphp
https://www.exploit-db.com/exploits/28552
exploitdb
WORKING POC
VERIFIED
by zark0vac · textwebappsphp
https://www.exploit-db.com/exploits/28551
exploitdb
WORKING POC
VERIFIED
by zark0vac · textwebappsphp
https://www.exploit-db.com/exploits/28549
exploitdb
WORKING POC
VERIFIED
by zark0vac · textwebappsphp
https://www.exploit-db.com/exploits/28548
exploitdb
WORKING POC
VERIFIED
by zark0vac · textwebappsphp
https://www.exploit-db.com/exploits/28546
exploitdb
WORKING POC
VERIFIED
by zark0vac · textwebappsphp
https://www.exploit-db.com/exploits/28545
exploitdb
WORKING POC
VERIFIED
by zark0vac · textwebappsphp
https://www.exploit-db.com/exploits/28547
References (11)
Core 11
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/30982
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/30979
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/30987
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/30983
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/30984
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/30986
Exploit x_refsource_misc
http://www.securityfocus.com/data/vulnerabilities/exploits/19997.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/30985
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/19997
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/30981
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/30980
Scores
EPSS
0.0110
EPSS Percentile
78.1%
Details
Status
published
Products (1)
e107/e107
0.7.5
Published
Sep 14, 2006
Tracked Since
Feb 18, 2026