CVE-2007-1508

NONE EPSS 75.4%
Published Mar 20, 200719y ago · Modified Jun 16, 20262w ago
Find Similar
Published Mar 20, 2007 19y ago
Last Modified Jun 16, 2026 2w ago

Description

Cross-site scripting (XSS) vulnerability in CMD_USER_STATS in DirectAdmin allows remote attackers to inject arbitrary web script or HTML via the RESULT parameter, a different vector than CVE-2006-5983.

Threat Intelligence

EPSS Exploit Probability
75.4% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 1

VendorProductVersionRange
directadmindirectadmin*any

References 6

  • osvdb.org http://osvdb.org/34273
    Broken Link
  • secunia.com http://secunia.com/advisories/24551
    Not Applicable
  • securityfocus.com http://www.securityfocus.com/archive/1/463003/100/0/threaded
    Broken Link
  • securityfocus.com http://www.securityfocus.com/bid/22996
    Broken Link
  • vupen.com http://www.vupen.com/english/advisories/2007/1037
    Third Party Advisory
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/33023
    Third Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.