Unrated severityNVD Advisory· Published Dec 15, 2007· Updated Apr 23, 2026

CVE-2007-5582

Description

Cross-site scripting (XSS) vulnerability in the login page in Cisco CiscoWorks Server (CS), possibly 2.6 and earlier, when using CiscoWorks Common Services 3.0.x and 3.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

Cisco Systems, Inc./Ciscoworks Server
cpe:2.3:a:cisco:ciscoworks_server:*:*:*:*:*:*:*:*
Range: <=2.6

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/warp/public/707/cisco-sr-20071205-cw.shtmlnvdPatch
secunia.com/advisories/27902nvd
securityreason.com/securityalert/3449nvd
securitytracker.com/idnvd
tools.cisco.com/Support/BugToolKit/search/getBugDetails.donvd
www.liquidmatrix.org/blog/2007/12/05/advisory-cross-site-scripting-in-ciscoworks/nvd
www.securityfocus.com/archive/1/484609/100/0/threadednvd
www.securityfocus.com/bid/26708nvd
www.vupen.com/english/advisories/2007/4102nvd
exchange.xforce.ibmcloud.com/vulnerabilities/38862nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000