Lucene search

[email protected]NVD:CVE-2007-0763

HistoryFeb 06, 2007 - 2:28 a.m.

CVE-2007-0763

2007-02-0602:28:00

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

5.7

Confidence

High

EPSS

0.004

Percentile

74.9%

JSON

Cross-site scripting (XSS) vulnerability in the news comment functionality in F3Site 2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the Autor field.

Affected configurations

Nvd

Node

f3sitef3siteMatch2.1

VendorProductVersionCPE
f3sitef3site2.1cpe:2.3:a:f3site:f3site:2.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
f3site	f3site	2.1	cpe:2.3:a:f3site:f3site:2.1:::::::*

References

osvdb.org/34668

www.securityfocus.com/bid/22379

exchange.xforce.ibmcloud.com/vulnerabilities/32188

www.exploit-db.com/exploits/3255

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

5.7

Confidence

High

EPSS

0.004

Percentile

74.9%

JSON

Related for NVD:CVE-2007-0763

prion1 cvelist1 cve1 exploitdb1 securityvulns1