Lucene search

MitreCVE-2007-2879

HistoryMay 29, 2007 - 8:30 p.m.

CVE-2007-2879

2007-05-2920:30:00

mitre

web.nvd.nist.gov

cve-2007-2879

xss

gtp gnuturk portal system 3g

security

vulnerability

web script

html

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.005

Percentile

77.2%

JSON

Cross-site scripting (XSS) vulnerability in mods.php in GTP GNUTurk Portal System 3G allows remote attackers to inject arbitrary web script or HTML via the month parameter.

Affected configurations

Nvd

Node

gnuturkgnuturk_portal_systemMatch3g

VendorProductVersionCPE
gnuturkgnuturk_portal_system3gcpe:2.3:a:gnuturk:gnuturk_portal_system:3g:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gnuturk	gnuturk_portal_system	3g	cpe:2.3:a:gnuturk:gnuturk_portal_system:3g:::::::*

References

osvdb.org/38139

securityreason.com/securityalert/2737

www.securityfocus.com/archive/1/469584/100/0/threaded

www.securityfocus.com/bid/24152

exchange.xforce.ibmcloud.com/vulnerabilities/34514

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.005

Percentile

77.2%

JSON

Related for CVE-2007-2879