EUVD-2007-4272

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Sun Java System Portal Server 7.0 allows attackers to execute arbitrary Java methods via XSLT stylesheets

Reporter	Title	Published	Views	Family All 11
CVE	CVE-2007-4289	9 Aug 200721:00	–	cve
Cvelist	CVE-2007-4289	9 Aug 200721:00	–	cvelist
NVD	CVE-2007-4289	9 Aug 200721:17	–	nvd
Prion	Design/Logic Flaw	9 Aug 200721:17	–	prion
Prion	Sql injection	30 Jun 200822:41	–	prion
Tenable Nessus	Solaris 10 (sparc) : 121913-20 (deprecated)	12 Oct 200700:00	–	nessus
Tenable Nessus	Solaris 10 (x86) : 121914-20 (deprecated)	12 Oct 200700:00	–	nessus
Tenable Nessus	Solaris 8 (sparc) : 121913-20	15 Oct 200700:00	–	nessus
Tenable Nessus	Solaris 8 (x86) : 121914-20	12 Oct 200700:00	–	nessus
Tenable Nessus	Solaris 9 (sparc) : 121913-20	12 Oct 200700:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "9bf3d80b-bfad-3cd0-bc91-dd2536b48b33",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "c12675f5-4e56-331d-8faf-02ee25839250",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/archive/1/473553/100/0/threaded
isecpartners	www.isecpartners.com/files/XMLDSIG_Command_Injection.pdf
secunia	www.secunia.com/advisories/26327
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/35811
securitytracker	www.securitytracker.com/id
isecpartners	www.isecpartners.com/advisories/2007-04-dsig.txt
sunsolve	www.sunsolve.sun.com/search/document.do
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.1Medium risk

Vulners AI Score6.1

CVSS 26.8

EPSS0.00832