CVE-2007-2907

CVE-2007-2907 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:N

Unspecified vulnerability in SSL-Explorer before 0.2.13 allows remote authenticated users to enter redirect URLs containing (1) JavaScript or (2) HTTP headers via an unspecified vector, possibly the forwardTo parameter to redirect.do. NOTE: the impact might be cross-site scripting (XSS) or HTTP request smuggling.

Learn more about our User Device Pen Test.