Unrated severityNVD Advisory· Published Jul 17, 2007· Updated Jun 16, 2026
CVE-2007-3835
CVE-2007-3835
Description
Cross-site scripting (XSS) vulnerability in Ex Libris MetaLib 3.13 and 4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a resource id that can be discovered through a search.
Affected products
3cpe:2.3:a:exlibris_group:metalib:3.13:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:exlibris_group:metalib:3.13:*:*:*:*:*:*:*
- cpe:2.3:a:exlibris_group:metalib:4:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
8- escarpment.net/exlibris.txtnvd
- lists.grok.org.uk/pipermail/full-disclosure/2007-July/064666.htmlnvd
- osvdb.org/36877nvd
- secunia.com/advisories/26162nvd
- securityreason.com/securityalert/2889nvd
- www.securityfocus.com/archive/1/473785/100/0/threadednvd
- www.securityfocus.com/bid/24978nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35431nvd
News mentions
0No linked articles in our index yet.