CVE-2007-5798 in WebSphere Application Serverinformazioni

Riassunto

di MITRE

Multiple cross-site scripting (XSS) vulnerabilities in uddigui/navigateTree.do in the UDDI user console in IBM WebSphere Application Server (WAS) before 6.1.0 Fix Pack 13 (6.1.0.13) allow remote attackers to inject arbitrary web script or HTML via the (1) keyField, (2) nameField, (3) valueField, and (4) frameReturn parameters.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

02/11/2007

Divulgazione

02/11/2007

Moderazione

accettato

Voce

VDB-39541

CPE

pronto

CWE

CWE-79 (confermato)

CVSS

4.3 (NVD)

EPSS

0.01263

KEV

Attività

molto basso

Settore

Education, Government, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-5798
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-5798
CVE Details	https://www.cvedetails.com/cve/CVE-2007-5798/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!