Cross-site scripting (XSS) vulnerability in emfadmin/statusView.do in Tumbleweed EMF Administration Module 6.2.2 Build 4123, and possibly other versions before 6.3.2, allows remote attackers to inject arbitrary web script or HTML via the (1) lineId and (2) sort parameters.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-05-09T17:00:00

Updated: 2024-08-07T19:23:41.026Z

Reserved: 2006-09-12T00:00:00

Link: CVE-2006-4727

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2006-12-31T05:00:00.000

Modified: 2024-11-21T00:16:37.800

Link: CVE-2006-4727

cve-icon Redhat

No data.