Lucene search

[email protected]NVD:CVE-2007-3056

HistoryJun 06, 2007 - 1:30 a.m.

CVE-2007-3056

2007-06-0601:30:00

CWE-79

[email protected]

web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.042 Low

EPSS

Percentile

92.3%

JSON

Cross-site scripting (XSS) vulnerability in filedetails.php in WebSVN 2.0rc4, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the path parameter.

Affected configurations

NVD

Node

websvnwebsvnRange≤2.0rc4

References

bugs.gentoo.org/show_bug.cgi?id=180879

osvdb.org/36409

secunia.com/advisories/25532

securitytracker.com/id?1018601

websvn.tigris.org/servlets/ReadMsg?list=dev&msgNo=1328

www.attrition.org/pipermail/vim/2007-August/001771.html

www.nabble.com/CVE-2007-3056-tf4246678.html

www.securityfocus.com/bid/24310

exchange.xforce.ibmcloud.com/vulnerabilities/34726

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.042 Low

EPSS

Percentile

92.3%

JSON

Related for NVD:CVE-2007-3056

cve1 cvelist1 prion1 ubuntucve1