CVE-2007-6104

Published Nov 23, 2007

Last updated 8 years ago

CVSS info 4.3

Overview

Description: Cross-site scripting (XSS) vulnerability in the Instant Web Publishing feature in FileMaker Pro 7 and 8, Server 7 and 8, and Developer 7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-79

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:filemaker:filemaker:7.0:*:developer:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8355D981-6A48-401C-BF40-7056190C0E51"
          },
          {
            "criteria": "cpe:2.3:a:filemaker:filemaker:7.0:*:pro:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2414327A-1D14-4E95-8AD0-516D72BDE2BA"
          },
          {
            "criteria": "cpe:2.3:a:filemaker:filemaker:8.0:*:advanced:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FCA1134A-84F9-44B6-AED5-A000A986D462"
          },
          {
            "criteria": "cpe:2.3:a:filemaker:filemaker:8.0:*:pro:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFADEB64-38F1-4620-A3FD-E9A41090228D"
          },
          {
            "criteria": "cpe:2.3:a:filemaker:filemaker:8.5:*:pro:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8EDD6D7-3F8F-443E-8845-678394CF3719"
          },
          {
            "criteria": "cpe:2.3:a:filemaker:filemaker_server:7.0:*:advanced:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFD2048B-D4B8-4068-A88D-8B30507427E7"
          },
          {
            "criteria": "cpe:2.3:a:filemaker:filemaker_server:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "866F01C3-BCF2-4D5C-B23E-11A8B2C333C0"
          },
          {
            "criteria": "cpe:2.3:a:filemaker:filemaker_server:8.0:*:advanced:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D609BDE9-0782-4C20-A39E-F9B4442C9200"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References