CVE-2007-1188
Published Mar 2, 2007
Last updated 14 years ago
Overview
- Description
- WebAPP before 0.9.9.5 allows remote attackers to submit Search form input that is not checked for (1) composition or (2) length, which has unknown impact, possibly related to "search form hijacking".
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:web-app.org:webapp:0.9.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "79090F47-9D7C-42F4-A64E-6633A3CF73F0"
},
{
"criteria": "cpe:2.3:a:web-app.org:webapp:0.9.9.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FA8C727E-412A-4044-8FE9-63C4FD8D4779"
},
{
"criteria": "cpe:2.3:a:web-app.org:webapp:0.9.9.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "87B45A79-F173-44D6-8737-22DDE3877AE7"
},
{
"criteria": "cpe:2.3:a:web-app.org:webapp:0.9.9.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A343A7FD-E5BA-4C84-913B-2B56AFA555FD"
},
{
"criteria": "cpe:2.3:a:web-app.org:webapp:0.9.9.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9216F8B4-8B90-4DF0-9135-CFBBBE8E199E"
},
{
"criteria": "cpe:2.3:a:web-app.org:webapp:0.9.9.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E7890A9-68D0-4882-9BF0-EE90C32DA554"
},
{
"criteria": "cpe:2.3:a:web-app.org:webapp:0.9.9.3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "124D5CC6-651A-4C59-975E-D23500DE0EA9"
},
{
"criteria": "cpe:2.3:a:web-app.org:webapp:0.9.9.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DC102B4E-32FB-4424-8BF9-1E69A95961D4"
}
],
"operator": "OR"
}
]
}
]