Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2007-4465
HistorySep 14, 2007 - 12:00 a.m.

CVE-2007-4465

2007-09-1400:00:00
mitre
www.cve.org
1

5.3 Medium

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.4%

JSON

Cross-site scripting (XSS) vulnerability in mod_autoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it could be argued that this issue is due to a design limitation of browsers that attempt to perform automatic content type detection.

References

Related

debiancve 1
veracode 1
securityvulns 3
prion 1
nvd 1
altlinux 3
cve 1
ubuntucve 1
openvas 40
fedora 2
redhat 7
nessus 24
centos 4
oraclelinux 3
suse 1
gentoo 1
ubuntu 1
debiancve
debiancve
CVE-2007-4465
2007-09-14 00:17:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-10 00:18:54
securityvulns
securityvulns
Apache crossite scripting
2007-09-13 00:00:00
Apache2 Undefined Charset UTF-7 XSS Vulnerability
2007-09-13 00:00:00
About the security content of Security Update 2008-003 / Mac OS X 10.5.3
2008-05-30 00:00:00
prion
prion
Cross site scripting
2007-09-14 00:17:00
nvd
nvd
CVE-2007-4465
2007-09-14 00:17:00
altlinux
altlinux
Security fix for the ALT Linux 8 package apache2 version 2.2.6-alt1
2007-09-14 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.6-alt1
2007-09-14 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.6-alt1
2007-09-14 00:00:00
cve
cve
CVE-2007-4465
2007-09-14 00:17:00
ubuntucve
ubuntucve
CVE-2007-4465
2007-09-14 00:00:00
openvas
openvas
Mandriva Update for apache MDKSA-2007:235 (apache)
2009-04-09 00:00:00
Fedora Update for httpd FEDORA-2007-707
2009-02-27 00:00:00
Fedora Update for httpd FEDORA-2007-707
2009-02-27 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: httpd-2.2.6-1.fc6
2007-09-24 20:29:48
[SECURITY] Fedora 7 Update: httpd-2.2.6-1.fc7
2007-09-19 02:53:28
redhat
redhat
(RHSA-2007:0911) Moderate: httpd security update
2007-10-25 00:00:00
(RHSA-2008:0006) Moderate: httpd security update
2008-01-15 00:00:00
(RHSA-2008:0004) Moderate: apache security update
2008-01-15 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : apache (MDKSA-2007:235)
2007-12-04 00:00:00
Fedora Core 6 : httpd-2.2.6-1.fc6 (2007-707)
2007-09-25 00:00:00
RHEL 2.1 : apache (RHSA-2008:0004)
2008-01-15 00:00:00
centos
centos
apache security update
2008-01-16 02:42:35
httpd, mod_ssl security update
2008-01-15 13:48:01
httpd, mod_ssl security update
2008-01-15 12:48:29
oraclelinux
oraclelinux
Moderate: httpd security update
2008-01-15 00:00:00
Moderate: httpd security update
2008-01-15 00:00:00
Moderate: httpd security update
2008-01-15 00:00:00
suse
suse
remote denial of service in apache2
2007-11-19 15:20:20
gentoo
gentoo
Apache: Multiple vulnerabilities
2007-11-07 00:00:00
ubuntu
ubuntu
Apache vulnerabilities
2008-02-04 00:00:00

5.3 Medium

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.4%

JSON
Related for CVELIST:CVE-2007-4465
debiancve1veracode1securityvulns3prion1nvd1altlinux3cve1ubuntucve1openvas40fedora2redhat7nessus24centos4oraclelinux3suse1gentoo1ubuntu1