CVE-2007-1176

2007-02-2816:00:00

mitre

www.cve.org

5.8 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.8%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in WebAPP before 0.9.9.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) Gallery Comments pages, (2) Feedback pages, (3) Search Results pages, and (4) the Statistics Log viewer.

References

osvdb.org/33276

osvdb.org/33288

osvdb.org/33289

osvdb.org/33290

secunia.com/advisories/24080

www.securityfocus.com/bid/22563

www.vupen.com/english/advisories/2007/0604

www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=250

exchange.xforce.ibmcloud.com/vulnerabilities/32498

exchange.xforce.ibmcloud.com/vulnerabilities/32499

exchange.xforce.ibmcloud.com/vulnerabilities/32526