Lucene search
MitreCVE-2007-3694HistoryNov 14, 2007 - 11:46 p.m.
CVE-2007-3694
2007-11-1423:46:00
CWE-79
mitre
web.nvd.nist.gov
32
cve-2007-3694
cross-site scripting
xss
miro project broadcast machine
login.php
web security
remote attacks
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.007
Percentile
79.8%
Cross-site scripting (XSS) vulnerability in login.php in Miro Project Broadcast Machine 0.9.9.9 allows remote attackers to inject arbitrary web script or HTML via the username parameter.
Affected configurations
Node
getmirobroadcast_machineMatch0.9.9.9
| Vendor | Product | Version | CPE |
|---|---|---|---|
| getmiro | broadcast_machine | 0.9.9.9 | cpe:2.3:a:getmiro:broadcast_machine:0.9.9.9:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
Miro Broadcast Machine 0.9.9 - 'login.php' Cross-Site Scripting
2007-11-12 00:00:00
packetstorm
packetstorm
CVE-2007-3694-bm.txt
2007-11-13 00:00:00
securityvulns
securityvulns
prion
prion
Cross site scripting
2007-11-14 23:46:00
cvelist
cvelist
CVE-2007-3694
2007-11-14 23:00:00
nvd
nvd
CVE-2007-3694
2007-11-14 23:46:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.007
Percentile
79.8%
Related for CVE-2007-3694