Lucene search

[email protected]CVE-2007-0385

HistoryJan 19, 2007 - 11:28 p.m.

CVE-2007-0385

2007-01-1923:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

postnuke

cve-2007-0385

security vulnerability

remote attack

sensitive information

6.5 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.01 Low

EPSS

Percentile

83.8%

JSON

The faq section in PostNuke 0.764 allows remote attackers to obtain sensitive information (the full path) via “unvalidated output” in FAQ/index.php, possibly involving an undefined id_cat variable.

CPENameOperatorVersion
postnuke_software_foundation:postnukepostnuke software foundation postnukeeq0.764

CPE	Name	Operator	Version
postnuke_software_foundation:postnuke	postnuke software foundation postnuke	eq	0.764

References

archives.neohapsis.com/archives/fulldisclosure/2007-01/0355.html

noc.postnuke.com/plugins/scmsvn/viewcvs.php/trunk/Historic/PostNuke7x/html/modules/?root=postnuke

noc.postnuke.com/plugins/scmsvn/viewcvs.php/trunk/Historic/PostNuke7x/html/modules/FAQ/index.php?root=postnuke&r1=20350&r2=20911

osvdb.org/35472

www.hackers.ir/advisories/festival.txt

6.5 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.01 Low

EPSS

Percentile

83.8%

JSON

Related for CVE-2007-0385

prion1 securityvulns1