CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
90.3%
Multiple unspecified vulnerabilities in form input validation in web-app.org WebAPP before 0.9.9.6 allow remote authenticated users to corrupt data files, gain access to private files, and execute arbitrary code via “certain characters.”
Vendor | Product | Version | CPE |
---|---|---|---|
web-app.org | webapp | 0.9.9 | cpe:2.3:a:web-app.org:webapp:0.9.9:*:*:*:*:*:*:* |
web-app.org | webapp | 0.9.9.1 | cpe:2.3:a:web-app.org:webapp:0.9.9.1:*:*:*:*:*:*:* |
web-app.org | webapp | 0.9.9.2 | cpe:2.3:a:web-app.org:webapp:0.9.9.2:*:*:*:*:*:*:* |
web-app.org | webapp | 0.9.9.2.1 | cpe:2.3:a:web-app.org:webapp:0.9.9.2.1:*:*:*:*:*:*:* |
web-app.org | webapp | 0.9.9.3 | cpe:2.3:a:web-app.org:webapp:0.9.9.3:*:*:*:*:*:*:* |
web-app.org | webapp | 0.9.9.3.1 | cpe:2.3:a:web-app.org:webapp:0.9.9.3.1:*:*:*:*:*:*:* |
web-app.org | webapp | 0.9.9.3.2 | cpe:2.3:a:web-app.org:webapp:0.9.9.3.2:*:*:*:*:*:*:* |
web-app.org | webapp | 0.9.9.3.3 | cpe:2.3:a:web-app.org:webapp:0.9.9.3.3:*:*:*:*:*:*:* |
web-app.org | webapp | 0.9.9.3.4 | cpe:2.3:a:web-app.org:webapp:0.9.9.3.4:*:*:*:*:*:*:* |
web-app.org | webapp | 0.9.9.3.5 | cpe:2.3:a:web-app.org:webapp:0.9.9.3.5:*:*:*:*:*:*:* |