ID CVE-2007-0954
Type cve
Reporter NVD
Modified 2011-03-07T21:51:01
Description
MOHA Chat 0.1b7 and earlier does not require authentication for use of the plug in API, which has unknown impact and attack vectors.
{"href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-0954", "history": [], "references": ["http://www.vupen.com/english/advisories/2007/0599", "http://mohachat.sourceforge.net/download/release_notes/#0.1b8"], "lastseen": "2016-09-03T08:27:35", "bulletinFamily": "NVD", "title": "CVE-2007-0954", "cpe": ["cpe:/a:mohachat:moha_chat:0.1b7"], "viewCount": 0, "id": "CVE-2007-0954", "hash": "5c741b0b306c1da88038d9c8ea452eb5d081fb635a10f33970a25d040e8d653c", "description": "MOHA Chat 0.1b7 and earlier does not require authentication for use of the plug in API, which has unknown impact and attack vectors.", "edition": 1, "assessment": {"name": "", "href": "", "system": ""}, "cvelist": ["CVE-2007-0954"], "scanner": [], "modified": "2011-03-07T21:51:01", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "objectVersion": "1.2", "reporter": "NVD", "type": "cve", "published": "2007-02-14T21:28:00", "enchantments": {"score": {"value": 10.0, "vector": "NONE", "modified": "2016-09-03T08:27:35"}, "vulnersScore": 10.0}}
{"osvdb": [{"lastseen": "2017-04-28T13:20:28", "references": [], "description": "## Solution Description\nUpgrade to version 0.1b8 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\nVendor URL: http://mohachat.sourceforge.net/\nVendor Specific News/Changelog Entry: http://mohachat.sourceforge.net/download/release_notes/#0.1b8\nFrSIRT Advisory: ADV-2007-0599\n[CVE-2007-0954](https://vulners.com/cve/CVE-2007-0954)\n", "edition": 1, "reporter": "OSVDB", "published": "2007-02-13T16:40:39", "title": "MOHA Chat Multiple Unspecified Issues", "type": "osvdb", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2007-0954"], "modified": "2007-02-13T16:40:39", "href": "https://vulners.com/osvdb/OSVDB:31934", "id": "OSVDB:31934", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:09:23", "references": ["https://vulners.com/securityvulns/securityvulns:doc:16086", "https://vulners.com/securityvulns/securityvulns:doc:16088", "https://vulners.com/securityvulns/securityvulns:doc:16089", "https://vulners.com/securityvulns/securityvulns:doc:16087", "https://vulners.com/securityvulns/securityvulns:doc:16090", "https://vulners.com/securityvulns/securityvulns:doc:16091", "https://vulners.com/securityvulns/securityvulns:doc:16092"], "description": "PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.", "edition": 1, "reporter": " ", "published": "2007-02-15T00:00:00", "title": "Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:23", "vector": "NONE", "value": 4.3}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "DeskPRO", "version": "1.1", "operator": "eq"}, {"name": "SCart", "version": "2.0", "operator": "eq"}, {"name": "Advanced Poll", "version": "2.0", "operator": "eq"}, {"name": "PollMentor", "version": "2.0", "operator": "eq"}, {"name": "Xaran CMS", "version": "2.0", "operator": "eq"}, {"name": "AT Contenator", "version": "1.0", "operator": "eq"}, {"name": "Drupal", "version": "5.1", "operator": "eq"}, {"name": "Harpia CMS", "version": "1.0", "operator": "eq"}, {"name": "nabopoll", "version": "1.1", "operator": "eq"}, {"name": "Drupal", "version": "4.7", "operator": "eq"}, {"name": "Apache Stats", "version": "0.0", "operator": "eq"}, {"name": "ZebraFeeds", "version": "1.0", "operator": "eq"}, {"name": "MOHA Chat", "version": "0.1", "operator": "eq"}, {"name": "phpCC", "version": "4.2", "operator": "eq"}], "cvelist": ["CVE-2007-0928", "CVE-2007-0953", "CVE-2007-0983", "CVE-2007-1016", "CVE-2007-1021", "CVE-2006-7000", "CVE-2006-7005", "CVE-2007-0952", "CVE-2007-0954", "CVE-2006-7012", "CVE-2006-7004", "CVE-2007-1010", "CVE-2006-5249", "CVE-2006-7024", "CVE-2006-6998", "CVE-2007-0930", "CVE-2007-0984", "CVE-2006-6999", "CVE-2007-0900", "CVE-2007-0985", "CVE-2007-1012", "CVE-2007-1015"], "modified": "2007-02-15T00:00:00", "id": "SECURITYVULNS:VULN:7245", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:7245", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}
