CVE-2007-1840

EPSS 0.63%

Published: 4/3/2007Modified: 4/28/2026

Also known as:DEBIAN-CVE-2007-1840

Description

lib/modules.inc in LDAP Account Manager (LAM) before 1.3.0 does not escape HTML special characters in LDAP data, which allows remote attackers to have an unknown impact, probably cross-site scripting (XSS).

Affected packages (1)

Debian/ldap-account-managerfrom 0, < 1.1.1-2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-1840