CVE-2007-3830

ISS Proventia Network IPS GX5008 and GX5108 - Cross-Site Scripting via Alert Reminder Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-3830. PoCs published by alt3kx.

AI-analyzed exploit summary This repository provides references to technical documentation and exploit details for CVE-2007-3830, which involves multiple input validation vulnerabilities in IBM Proventia Sensor Appliances. It includes links to Exploit-DB entries and a detailed paper analyzing the vulnerabilities.

Description

Cross-site scripting (XSS) vulnerability in alert.php in ISS Proventia Network IPS GX5108 1.3 and GX5008 1.5 allows remote attackers to inject arbitrary web script or HTML via the reminder parameter.

Exploits (1)

nomisec WRITEUP
by alt3kx · poc
https://github.com/alt3kx/CVE-2007-3830

This repository provides references to technical documentation and exploit details for CVE-2007-3830, which involves multiple input validation vulnerabilities in IBM Proventia Sensor Appliances. It includes links to Exploit-DB entries and a detailed paper analyzing the vulnerabilities.

Classification
Writeup 90%
Attack Type
Other
Complexity
Moderate
Reliability
Theoretical
Target: IBM Proventia Sensor Appliance (GX5108 & GX5008)
No auth needed
Prerequisites: Access to the vulnerable IBM Proventia Sensor Appliance
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25979
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2545
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/36475

Scores

EPSS 0.0216
EPSS Percentile 79.8%

Details

Status published
Products (2)
ibm/proventia_network_ips_gx5008 1.5
ibm/proventia_network_ips_gx5108 1.3
Published Jul 17, 2007
Tracked Since Feb 18, 2026