CVE-2007-0519
XMB Software U2u Instant Messenger - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in memcp.php in XMB U2U Instant Messenger allows remote authenticated users to inject arbitrary web script or HTML via the recipient field.
References (5)
Scores
EPSS
0.0027
EPSS Percentile
50.2%
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
xmb_software/u2u_instant_messenger
Timeline
Published
Jan 26, 2007
Tracked Since
Feb 18, 2026