CVE-2007-2380 in Atlas frameworkthông tin

Tóm tắt

Bởi MITRE

The Microsoft Atlas framework exchanges data using JavaScript Object Notation (JSON) without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and captures the data using other JavaScript code, aka "JavaScript Hijacking."

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Đặt trước

30/04/2007

Tiết lộ

30/04/2007

Kiểm duyệt

được chấp nhận

mục

VDB-36521

CPE

sẵn sàng

CWE

Không xác định

CVSS

5.3 (VulDB)

EPSS

0.21372

KEV

không

Các hoạt động

rất thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-2380
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-2380
CVE Details	https://www.cvedetails.com/cve/CVE-2007-2380/

◂ Trước Tổng Quan Tiếp theo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!