Unrated severityNVD Advisory· Published Apr 26, 2007· Updated Jun 16, 2026
CVE-2007-2310
CVE-2007-2310
Description
Cross-site scripting (XSS) vulnerability in plugins/spaw/img_popup.php in BloofoxCMS 0.2.2 allows remote attackers to inject arbitrary web script or HTML via the img_url parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- cpe:2.3:a:bloofoxcms:bloofoxcms:0.2.2:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.