Lucene search
HistoryJan 29, 2007 - 5:28 p.m.
CVE-2007-0553
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
5.6
Confidence
High
EPSS
0.005
Percentile
77.1%
Multiple cross-site scripting (XSS) vulnerabilities in index.inc.php in PHProxy before 0.5 beta 2 allow remote attackers to inject arbitrary web script or HTML via the (1) data[realm] and (2) _url parameters, different vectors than CVE-2004-2604. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
phproxyphproxyMatch0.1
ORphproxyphproxyMatch0.2
ORphproxyphproxyMatch0.3
ORphproxyphproxyMatch0.4
Related
cvelist
cvelist
CVE-2007-0553
2007-01-29 17:00:00
CVE-2004-2604
2005-11-29 02:00:00
prion
prion
Cross site scripting
2007-01-29 17:28:00
cve
cve
CVE-2007-0553
2007-01-29 17:28:00
CVE-2004-2604
2005-11-29 02:00:00
openvas
openvas
PHProxy XSS Vulnerability
2005-11-03 00:00:00
nvd
nvd
CVE-2004-2604
2004-12-31 05:00:00
securityvulns
securityvulns
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
5.6
Confidence
High
EPSS
0.005
Percentile
77.1%
Related for NVD:CVE-2007-0553