SecurityFocus

BugTraq

CVE-2007-3386: XSS in Host Manager Aug 14 2007 03:28AM
Mark Thomas (markt apache org)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

CVE-2007-3386: XSS in Host Manager

Severity:
Low (Cross-site scripting)

Vendor:
The Apache Software Foundation

Versions Affected:
6.0.0 to 6.0.13
5.5.0 to 5.5.24

Description:
The Host Manager Servlet does not filter user supplied data before
display...

[ more ]