CVE-2007-2718

Published: May 16, 2007Modified: Apr 23, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in the WebMail system in Stalker CommuniGate Pro 5.1.8 and earlier, when using Microsoft Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via crafted STYLE tags.

Affected (2)

Products: Microsoft: Internet Explorer · Stalker: Communigate Pro

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Microsoft Internet Explorer	All versions
Stalker Communigate Pro	Up to 5.1.8

References (18)

http://marc.info/?l=full-disclosure&m=117900749209206&w=2

Source: cve@mitre.org

http://osvdb.org/36017

Source: cve@mitre.org

http://secunia.com/advisories/25250

Source: cve@mitre.org

PatchVendor Advisory

http://www.communigate.com/CommuniGatePro/History51.html

Source: cve@mitre.org

http://www.scanit.be/advisory-2007-05-12.html

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/23950

Source: cve@mitre.org

Patch

http://www.securitytracker.com/id?1018048

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2007/1795

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/34266

Source: cve@mitre.org

http://marc.info/?l=full-disclosure&m=117900749209206&w=2