Lucene search

[email protected]NVD:CVE-2007-3120

HistoryJun 07, 2007 - 9:30 p.m.

CVE-2007-3120

2007-06-0721:30:00

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.004

Percentile

74.1%

JSON

Cross-site scripting (XSS) vulnerability in public/code/cp_dpage.php in All In One Control Panel (AIOCP) before 1.3.017 allows remote attackers to inject arbitrary web script or HTML via the aiocp_dp parameter. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

aiocpaiocpMatch1.3.000

aiocpaiocpMatch1.3.001

aiocpaiocpMatch1.3.002

aiocpaiocpMatch1.3.003

aiocpaiocpMatch1.3.004

aiocpaiocpMatch1.3.005

aiocpaiocpMatch1.3.006

aiocpaiocpMatch1.3.007

aiocpaiocpMatch1.3.008

aiocpaiocpMatch1.3.009

aiocpaiocpMatch1.3.010

aiocpaiocpMatch1.3.011

aiocpaiocpMatch1.3.012

aiocpaiocpMatch1.3.013

aiocpaiocpMatch1.3.014

aiocpaiocpMatch1.3.015

aiocpaiocpMatch1.3.016

aiocpaiocpMatch1.3.017

VendorProductVersionCPE
aiocpaiocp1.3.000cpe:2.3:a:aiocp:aiocp:1.3.000:*:*:*:*:*:*:*
aiocpaiocp1.3.001cpe:2.3:a:aiocp:aiocp:1.3.001:*:*:*:*:*:*:*
aiocpaiocp1.3.002cpe:2.3:a:aiocp:aiocp:1.3.002:*:*:*:*:*:*:*
aiocpaiocp1.3.003cpe:2.3:a:aiocp:aiocp:1.3.003:*:*:*:*:*:*:*
aiocpaiocp1.3.004cpe:2.3:a:aiocp:aiocp:1.3.004:*:*:*:*:*:*:*
aiocpaiocp1.3.005cpe:2.3:a:aiocp:aiocp:1.3.005:*:*:*:*:*:*:*
aiocpaiocp1.3.006cpe:2.3:a:aiocp:aiocp:1.3.006:*:*:*:*:*:*:*
aiocpaiocp1.3.007cpe:2.3:a:aiocp:aiocp:1.3.007:*:*:*:*:*:*:*
aiocpaiocp1.3.008cpe:2.3:a:aiocp:aiocp:1.3.008:*:*:*:*:*:*:*
aiocpaiocp1.3.009cpe:2.3:a:aiocp:aiocp:1.3.009:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
aiocp	aiocp	1.3.000	cpe:2.3:a:aiocp:aiocp:1.3.000:::::::*
aiocp	aiocp	1.3.001	cpe:2.3:a:aiocp:aiocp:1.3.001:::::::*
aiocp	aiocp	1.3.002	cpe:2.3:a:aiocp:aiocp:1.3.002:::::::*
aiocp	aiocp	1.3.003	cpe:2.3:a:aiocp:aiocp:1.3.003:::::::*
aiocp	aiocp	1.3.004	cpe:2.3:a:aiocp:aiocp:1.3.004:::::::*
aiocp	aiocp	1.3.005	cpe:2.3:a:aiocp:aiocp:1.3.005:::::::*
aiocp	aiocp	1.3.006	cpe:2.3:a:aiocp:aiocp:1.3.006:::::::*
aiocp	aiocp	1.3.007	cpe:2.3:a:aiocp:aiocp:1.3.007:::::::*
aiocp	aiocp	1.3.008	cpe:2.3:a:aiocp:aiocp:1.3.008:::::::*
aiocp	aiocp	1.3.009	cpe:2.3:a:aiocp:aiocp:1.3.009:::::::*

Rows per page:

1-10 of 181

References

osvdb.org/35533

secunia.com/advisories/25584

sourceforge.net/project/shownotes.php?release_id=514035

www.securityfocus.com/bid/24357

www.vupen.com/english/advisories/2007/2097

exchange.xforce.ibmcloud.com/vulnerabilities/34762

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.004

Percentile

74.1%

JSON

Related for NVD:CVE-2007-3120

prion1 cve1 cvelist1