CVE-2007-4975

B1gmail - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in hilfe.php in b1gMail 6.3.1 allows remote attackers to inject arbitrary web script or HTML via the chapter parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by malibu.r · textwebappsphp
https://www.exploit-db.com/exploits/30596

References (6)

Scores

EPSS 0.0541
EPSS Percentile 90.0%

Classification

CWE
CWE-79
Status draft

Affected Products (1)

b1g/b1gmail

Timeline

Published Sep 19, 2007
Tracked Since Feb 18, 2026