CVE-2007-1102 in PhotoStandinformazioni

Riassunto

di MITRE

Photostand 1.2.0 allows remote attackers to obtain sensitive information via a (quote) character in (1) a PHPSESSID cookie or (2) the id parameter in an article action in index.php, which reveal the path in various error messages.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

26/02/2007

Divulgazione

26/02/2007

Moderazione

accettato

Voce

VDB-35216

CPE

pronto

CWE

CWE-200 (confermato)

CVSS

5.3 (VulDB)

EPSS

0.01442

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-1102
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-1102
CVE Details	https://www.cvedetails.com/cve/CVE-2007-1102/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!