Lucene search

[email protected]CVE-2007-0921

HistoryFeb 14, 2007 - 11:28 a.m.

CVE-2007-0921

2007-02-1411:28:00

[email protected]

web.nvd.nist.gov

cve-2007-0921

nvd

portal search

remote attackers

url redirection

9.4 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:C/A:C

6.6 Medium

AI Score

Confidence

High

0.018 Low

EPSS

Percentile

88.2%

JSON

Portal Search allows remote attackers to redirect a URL to an arbitrary web site by placing the URL in the query string to the top-level URI.

Affected configurations

NVD

Node

radical_technologiesportal_search

CPENameOperatorVersion
radical_technologies:portal_searchradical technologies portal searcheq*

CPE	Name	Operator	Version
radical_technologies:portal_search	radical technologies portal search	eq	*

References

osvdb.org/33713

securityreason.com/securityalert/2247

www.securityfocus.com/archive/1/459794/100/0/threaded

www.securityfocus.com/bid/22533

exchange.xforce.ibmcloud.com/vulnerabilities/32460

9.4 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:C/A:C

6.6 Medium

AI Score

Confidence

High

0.018 Low

EPSS

Percentile

88.2%

JSON

Related for CVE-2007-0921

prion1 cvelist1 nvd1 securityvulns1