CVE-2007-6141

vBTube 1.1 Beta - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in vBTube.php in vBTube 1.1 Beta allows remote attackers to inject arbitrary web script or HTML via the search parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Crackers_Child · textwebappsphp

https://www.exploit-db.com/exploits/30804

View Code ZIP pw:eip

References (4)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/38672

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/484155/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/26566

[Third Party Advisory] http://secunia.com/advisories/27814

Scores

EPSS 0.0035

EPSS Percentile 56.8%

Classification

CWE

CWE-79

Status draft

Affected Products (1)

vbtube/vbtube

Timeline

Published Nov 27, 2007

Tracked Since Feb 18, 2026