VYPR
Unrated severityNVD Advisory· Published Oct 6, 2007· Updated Jun 16, 2026

CVE-2007-5235

CVE-2007-5235

Description

Cross-site scripting (XSS) vulnerability in index.php in Uebimiau 2.7.2 through 2.7.10 allows remote attackers to inject arbitrary web script or HTML via the f_email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Uebimiau/Uebimiau4 versions
    cpe:2.3:a:uebimiau:uebimiau:2.7.10:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:uebimiau:uebimiau:2.7.10:*:*:*:*:*:*:*
    • cpe:2.3:a:uebimiau:uebimiau:2.7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:uebimiau:uebimiau:2.7.9:*:*:*:*:*:*:*
    • (no CPE)range: 2.7.2 - 2.7.10

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.