CVE-2007-6104
Published Nov 23, 2007
Last updated 7 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in the Instant Web Publishing feature in FileMaker Pro 7 and 8, Server 7 and 8, and Developer 7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:filemaker:filemaker:7.0:*:developer:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8355D981-6A48-401C-BF40-7056190C0E51"
},
{
"criteria": "cpe:2.3:a:filemaker:filemaker:7.0:*:pro:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2414327A-1D14-4E95-8AD0-516D72BDE2BA"
},
{
"criteria": "cpe:2.3:a:filemaker:filemaker:8.0:*:advanced:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FCA1134A-84F9-44B6-AED5-A000A986D462"
},
{
"criteria": "cpe:2.3:a:filemaker:filemaker:8.0:*:pro:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DFADEB64-38F1-4620-A3FD-E9A41090228D"
},
{
"criteria": "cpe:2.3:a:filemaker:filemaker:8.5:*:pro:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A8EDD6D7-3F8F-443E-8845-678394CF3719"
},
{
"criteria": "cpe:2.3:a:filemaker:filemaker_server:7.0:*:advanced:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CFD2048B-D4B8-4068-A88D-8B30507427E7"
},
{
"criteria": "cpe:2.3:a:filemaker:filemaker_server:8.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "866F01C3-BCF2-4D5C-B23E-11A8B2C333C0"
},
{
"criteria": "cpe:2.3:a:filemaker:filemaker_server:8.0:*:advanced:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D609BDE9-0782-4C20-A39E-F9B4442C9200"
}
],
"operator": "OR"
}
]
}
]