XSS in Fascript Faname

CVE-2007-3653

Multiple cross-site scripting (XSS) vulnerabilities in Farsi Script (aka FaScript) FaName 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) key or (2) desc parameter to index.php, or (3) the name parameter to pa…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.015 (70.5th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References