VYPR
Unrated severityNVD Advisory· Published Jun 19, 2007· Updated Jun 16, 2026

CVE-2007-3269

CVE-2007-3269

Description

Multiple cross-site scripting (XSS) vulnerabilities in Papoo Light 3.6 before 20070611 allow remote attackers to inject arbitrary web script or HTML via (1) the URI in a GET request or (2) the Title field of a visitor comment, and (3) allow remote authenticated users to inject arbitrary web script or HTML via a message to another user. NOTE: vector (2) might overlap CVE-2006-3571.1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:papoo:papoo_cms_light:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:papoo:papoo_cms_light:*:*:*:*:*:*:*:*range: <=3.6
    • (no CPE)range: <20070611

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.