Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-4193
HistoryAug 08, 2007 - 1:17 a.m.

CVE-2007-4193

2007-08-0801:17:00
[email protected]
web.nvd.nist.gov
3

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

7.2

Confidence

High

EPSS

0.008

Percentile

81.9%

JSON

Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in IDE Group DVD Rental System (DRS) 5.1 before 20070801 allow remote attackers to perform certain actions as arbitrary users, as demonstrated by (1) modifying data or (2) canceling a subscription. NOTE: it is not clear whether IDE Group updates all DRS installations in its role as an application service provider. If so, then this issue should not be included in CVE.

Affected configurations

Nvd
Node
ide_groupdvd_rental_system_drsMatch5.1
VendorProductVersionCPE
ide_groupdvd_rental_system_drs5.1cpe:2.3:a:ide_group:dvd_rental_system_drs:5.1:*:*:*:*:*:*:*

Related

cve 1
prion 1
cvelist 1
cve
cve
CVE-2007-4193
2007-08-08 01:17:00
prion
prion
Cross site request forgery (csrf)
2007-08-08 01:17:00
cvelist
cvelist
CVE-2007-4193
2007-08-08 01:11:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

7.2

Confidence

High

EPSS

0.008

Percentile

81.9%

JSON
Related for NVD:CVE-2007-4193
cve1prion1cvelist1