Lucene search
MitreCVE-2007-2808HistoryMay 22, 2007 - 7:30 p.m.
CVE-2007-2808
2007-05-2219:30:00
mitre
web.nvd.nist.gov
30
cve
2007
2808
cross-site scripting
xss
vulnerability
gnatsweb
gnatsweb 4.00
gnats 4.1.99
remote attackers
web script
html
database parameter
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.5
Confidence
High
EPSS
0.005
Percentile
77.2%
Cross-site scripting (XSS) vulnerability in gnatsweb.pl in Gnatsweb 4.00 and Gnats 4.1.99 allows remote attackers to inject arbitrary web script or HTML via the database parameter.
Affected configurations
Node
gnugnatsMatch4.1.99
ORyngve_svendsengnatswebMatch4.00
| Vendor | Product | Version | CPE |
|---|---|---|---|
| gnu | gnats | 4.1.99 | cpe:2.3:a:gnu:gnats:4.1.99:*:*:*:*:*:*:* |
| yngve_svendsen | gnatsweb | 4.00 | cpe:2.3:a:yngve_svendsen:gnatsweb:4.00:*:*:*:*:*:*:* |
Related
osv
osv
gnatsweb - cross-site scripting
2008-02-04 00:00:00
ubuntucve
ubuntucve
CVE-2007-2808
2007-05-22 00:00:00
nvd
nvd
CVE-2007-2808
2007-05-22 19:30:00
openvas
openvas
Debian Security Advisory DSA 1486-1 (gnatsweb)
2008-02-05 00:00:00
Debian: Security Advisory (DSA-1486-1)
2008-02-05 00:00:00
prion
prion
Cross site scripting
2007-05-22 19:30:00
cvelist
cvelist
CVE-2007-2808
2007-05-22 19:00:00
debian
debian
[SECURITY] [DSA 1486-1] New gnatsweb packages fix cross-site scripting
2008-02-05 17:09:37
nessus
nessus
Debian DSA-1486-1 : gnatsweb - XSS
2008-02-05 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.5
Confidence
High
EPSS
0.005
Percentile
77.2%
Related for CVE-2007-2808