CVE-2007-2805

EIP tracks 1 public exploit for CVE-2007-2805. PoCs published by r0t.

AI-analyzed exploit summary The provided text describes multiple cross-site scripting (XSS) vulnerabilities in ClientExec 3.0.0 beta2 due to improper input sanitization. It includes example URLs demonstrating the vulnerable parameters but does not contain executable exploit code.

Multiple cross-site scripting (XSS) vulnerabilities in index.php in ClientExec (CE) 3.0 beta2, and possibly other versions, allow remote attackers to inject arbitrary web script or HTML via the (1) ticketID, (2) view, and (3) fuse parameters.