Lucene search

[email protected]CVE-2007-6460

HistoryOct 03, 2022 - 4:14 p.m.

CVE-2007-6460

2022-10-0316:14:27

CWE-79

[email protected]

web.nvd.nist.gov

anon proxy server

xss

vulnerabilities

remote

injection

web script

html

cve-2007-6460

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.054 Low

EPSS

Percentile

93.2%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Anon Proxy Server before 0.101 allow remote attackers to inject arbitrary web script or HTML via the URI, which is later displayed by (1) log.php or (2) logerror.php, a different vulnerability than CVE-2007-6459.

Affected configurations

NVD

Node

anon_proxy_serveranon_proxy_serverMatch0.101

CPENameOperatorVersion
anon_proxy_server:anon_proxy_serveranon proxy servereq0.101

CPE	Name	Operator	Version
anon_proxy_server:anon_proxy_server	anon proxy server	eq	0.101

References

anonproxyserver.svn.sourceforge.net/viewvc/anonproxyserver/trunk/anon_proxy_server/

anonproxyserver.svn.sourceforge.net/viewvc/anonproxyserver/trunk/anon_proxy_server/log.php?r1=284&r2=325

anonproxyserver.svn.sourceforge.net/viewvc/anonproxyserver/trunk/anon_proxy_server/logerror.php?r1=245&r2=325

sourceforge.net/forum/forum.php?forum_id=761265

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.054 Low

EPSS

Percentile

93.2%

JSON

Related for CVE-2007-6460

prion2 nvd2 cvelist2 cve1