VYPR
Unrated severityNVD Advisory· Published Sep 14, 2007· Updated Jun 16, 2026

CVE-2007-4900

CVE-2007-4900

Description

Cross-site scripting (XSS) vulnerability in the logon page in RSA EnVision 3.3.6 Build 0115 allows remote attackers to inject arbitrary web script or HTML via the username field.

Affected products

2
  • Rsa/Envision2 versions
    cpe:2.3:a:rsa:envision:3.3.6_build_0115:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:rsa:envision:3.3.6_build_0115:*:*:*:*:*:*:*
    • (no CPE)range: 3.3.6 Build 0115

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.