XSS in Fascript Faname
CVE-2007-3653
Multiple cross-site scripting (XSS) vulnerabilities in Farsi Script (aka FaScript) FaName 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) key or (2) desc parameter to index.php, or (3) the name parameter to pa…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.015 (70.5th percentile) — read the EPSS interpretation.
Affected products
- Fascript Faname — versions 1.0
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (x_refsource_MISC)
- cve@mitre.org (x_refsource_MISC)