Lucene search
HistoryJul 17, 2007 - 12:30 a.m.
CVE-2007-3807
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
5.8
Confidence
High
EPSS
0.006
Percentile
79.2%
Multiple cross-site scripting (XSS) vulnerabilities in SiteScape Forum before 7.3 allow remote attackers to inject arbitrary web script or HTML via the user name field in the login procedure, and other unspecified vectors.
Affected configurations
Node
sitescapesitescape_forumRange≤7.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| sitescape | sitescape_forum | * | cpe:2.3:a:sitescape:sitescape_forum:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2007-3807
2007-07-17 00:00:00
cve
cve
CVE-2007-3807
2007-07-17 00:30:00
prion
prion
Cross site scripting
2007-07-17 00:30:00
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
5.8
Confidence
High
EPSS
0.006
Percentile
79.2%
Related for NVD:CVE-2007-3807