7.5
CVE-2007-1188
- EPSS 1.4%
- Veröffentlicht 02.03.2007 21:18:00
- Zuletzt bearbeitet 16.06.2026 22:37:06
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginWebAPP before 0.9.9.5 allows remote attackers to submit Search form input that is not checked for (1) composition or (2) length, which has unknown impact, possibly related to "search form hijacking".
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Web-app.Org ≫ Webapp Version0.9.9
Web-app.Org ≫ Webapp Version0.9.9.1
Web-app.Org ≫ Webapp Version0.9.9.2
Web-app.Org ≫ Webapp Version0.9.9.2.1
Web-app.Org ≫ Webapp Version0.9.9.3
Web-app.Org ≫ Webapp Version0.9.9.3.1
Web-app.Org ≫ Webapp Version0.9.9.3.2
Web-app.Org ≫ Webapp Version0.9.9.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.4% | 0.69 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://www.securityfocus.com/bid/22563
http://www.vupen.com/english/advisories/2007/0604
http://secunia.com/advisories/24080
http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=250
http://osvdb.org/33299