Lucene search

K
cveMitreCVE-2007-5013
HistorySep 20, 2007 - 9:17 p.m.

CVE-2007-5013

2007-09-2021:17:00
CWE-79
mitre
web.nvd.nist.gov
19
cve-2007-5013
cross-site scripting
xss
phormer 3.31
web script
html
remote attackers
security vulnerability
nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

66.0%

Multiple cross-site scripting (XSS) vulnerabilities in index.php in Phormer 3.31 allow remote attackers to inject arbitrary web script or HTML via the (1) u, (2) p, (3) c, and (4) s parameters, and other unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

Nvd
Node
phormerphormerMatch3.31
VendorProductVersionCPE
phormerphormer3.31cpe:2.3:a:phormer:phormer:3.31:*:*:*:*:*:*:*

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

66.0%

Related for CVE-2007-5013