Unrated severityNVD Advisory· Published May 16, 2007· Updated Jun 16, 2026
CVE-2007-2716
CVE-2007-2716
Description
Multiple cross-site scripting (XSS) vulnerabilities in EQdkp 1.3.2c and earlier allow remote attackers to inject arbitrary web script or HTML via the show parameter to (1) listmembers.php and (2) stats.php. NOTE: some of these details are obtained from third party information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:eqdkp:eqdkp:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:eqdkp:eqdkp:*:*:*:*:*:*:*:*range: <=1.3.2c
- cpe:2.3:a:eqdkp:eqdkp:1.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:eqdkp:eqdkp:1.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:eqdkp:eqdkp:1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:eqdkp:eqdkp:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:eqdkp:eqdkp:1.3.1_p1:*:*:*:*:*:*:*
- cpe:2.3:a:eqdkp:eqdkp:1.3_p4:*:*:*:*:*:*:*
- (no CPE)range: <=1.3.2c
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.