Unrated severityNVD Advisory· Published Nov 5, 2007· Updated Jun 16, 2026
CVE-2007-5806
CVE-2007-5806
Description
Cross-site scripting (XSS) vulnerability in Services/Utilities/classes/class.ilUtil.php in ILIAS 3.8.3 and earlier allows remote attackers to inject arbitrary web script or HTML via attributes inside a domain-name string in the (1) mailing or (2) forum component, as demonstrated using the style and onmouseover HTML attributes.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5Patches
Vulnerability mechanics
References
8- downloads.sourceforge.net/ilias/ilias.3.8.3.security.patch.zipnvdPatch
- www.ilias.de/docu/goto.phpnvdPatch
- www.securityfocus.com/bid/26264nvdPatch
- osvdb.org/38328nvd
- secunia.com/advisories/27457nvd
- securityreason.com/securityalert/3340nvd
- www.securityfocus.com/archive/1/483011/100/0/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/38171nvd
News mentions
0No linked articles in our index yet.