{"id":"CVE-2007-6110","details":"Cross-site scripting (XSS) vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter.","modified":"2026-04-10T03:39:23.773521Z","published":"2007-11-23T20:46:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/27850"},{"type":"ADVISORY","url":"http://secunia.com/advisories/27890"},{"type":"ADVISORY","url":"http://secunia.com/advisories/27965"},{"type":"ADVISORY","url":"http://secunia.com/advisories/28062"},{"type":"ADVISORY","url":"http://www.debian.org/security/2007/dsa-1429"},{"type":"ADVISORY","url":"http://www.novell.com/linux/security/advisories/2007_25_sr.html"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2007/4038"},{"type":"WEB","url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453278"},{"type":"WEB","url":"http://securitytracker.com/id?1019010"},{"type":"WEB","url":"http://sourceforge.net/mailarchive/forum.php?thread_name=200709251310.55835.mskibbe%40suse.de&forum_name=htdig-dev"},{"type":"WEB","url":"http://www.redhat.com/support/errata/RHSA-2007-1095.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/26610"},{"type":"WEB","url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11515"},{"type":"WEB","url":"https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00116.html"}],"schema_version":"1.7.5"}