Lucene search
MitreCVE-2007-3416HistoryJun 26, 2007 - 11:30 p.m.
CVE-2007-3416
2007-06-2623:30:00
CWE-352
mitre
web.nvd.nist.gov
27
csrf
vulnerabilities
webapp
administration
remote attackers
nvd
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
7
Confidence
Low
EPSS
0.002
Percentile
58.8%
Multiple cross-site request forgery (CSRF) vulnerabilities in the administration of (1) polls, (2) profiles, (3) IP bans, and (4) forums in (a) web-app.org WebAPP 0.8 through 0.9.9.6; and (b) web-app.net WebAPP 0.9.9.3.3, 0.9.9.3.4, and 2007; allow remote attackers to perform deletions as administrators.
Affected configurations
Node
web-app.orgwebappRange≤0.9.9.6
ORweb_app.netwebappMatch0.9.9.3.3
ORweb_app.netwebappMatch0.9.9.3.4
ORweb_app.netwebappMatch2007
| Vendor | Product | Version | CPE |
|---|---|---|---|
| web-app.org | webapp | * | cpe:2.3:a:web-app.org:webapp:*:*:*:*:*:*:*:* |
| web_app.net | webapp | 0.9.9.3.3 | cpe:2.3:a:web_app.net:webapp:0.9.9.3.3:*:*:*:*:*:*:* |
| web_app.net | webapp | 0.9.9.3.4 | cpe:2.3:a:web_app.net:webapp:0.9.9.3.4:*:*:*:*:*:*:* |
| web_app.net | webapp | 2007 | cpe:2.3:a:web_app.net:webapp:2007:*:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2007-06-26 23:30:00
cvelist
cvelist
CVE-2007-3416
2007-06-26 23:00:00
nvd
nvd
CVE-2007-3416
2007-06-26 23:30:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
7
Confidence
Low
EPSS
0.002
Percentile
58.8%
Related for CVE-2007-3416