Lucene search

MitreCVE-2007-4898

HistorySep 14, 2007 - 6:17 p.m.

CVE-2007-4898

2007-09-1418:17:00

mitre

web.nvd.nist.gov

cve-2007-4898

multiwiki plugin

xwiki

vulnerability

remote authenticated users

sensitive information

security issue

CVSS2

2.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:S/C:P/I:N/A:N

AI Score

5.8

Confidence

Low

EPSS

0.001

Percentile

51.4%

JSON

Unspecified vulnerability in the Multiwiki plugin in XWiki before 1.1 Enterprise RC2 allows remote authenticated users, with administrative access to one wiki in a multiwiki environment, to obtain sensitive information via unknown attack vectors. NOTE: Some of these details are obtained from third party information.

Affected configurations

Nvd

Node

xwikixwikiRange≤1.1_rc1

VendorProductVersionCPE
xwikixwiki*cpe:2.3:a:xwiki:xwiki:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
xwiki	xwiki	*	cpe:2.3:a:xwiki:xwiki::::::::

References

osvdb.org/40500

secunia.com/advisories/26777

www.securityfocus.com/bid/25647

www.xwiki.org/xwiki/bin/view/Main/ReleaseNotesXWikiEnterprise11RC2

CVSS2

2.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:S/C:P/I:N/A:N

AI Score

5.8

Confidence

Low

EPSS

0.001

Percentile

51.4%

JSON

Related for CVE-2007-4898