Yandex.Server CVE-2007-3485 Cross-Site Scripting Vulnerability

Yandex.Server CVE-2007-3485 Cross-Site Scripting Vulnerability

Yandex.Server is prone to a cross-site scripting vulnerability. Multiple cross-site scripting (XSS) vulnerabilities in Yandex.Server allow remote attackers to inject arbitrary web script or HTML via the (1) query or (2) within parameter to the default URI.