Lucene search
GoogleOSV:GHSA-384C-GG34-G96HHistoryMay 01, 2022 - 5:42 p.m.
Incorrect Authorization in Getahead Direct Web Remoting
2022-05-0117:42:17
Google
osv.dev
4
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.016 Low
EPSS
Percentile
87.2%
Getahead Direct Web Remoting (DWR) before 1.1.4 allows attackers to obtain unauthorized access to public methods via a crafted request that bypasses the include/exclude checks.
Related
prion
prion
Cross site request forgery (csrf)
2007-01-12 05:04:00
cvelist
cvelist
CVE-2007-0184
2007-01-11 02:00:00
github
github
Incorrect Authorization in Getahead Direct Web Remoting
2022-05-01 17:42:17
cve
cve
CVE-2007-0184
2007-01-12 05:04:00
nessus
nessus
openvas
openvas
SLES10: Security update for Websphere Community Edition
2009-10-13 00:00:00
SLES10: Security update for Websphere Community Edition
2009-10-13 00:00:00
SUSE: Security Summary (SUSE-SR:2009:004)
2009-02-18 00:00:00
securityvulns
securityvulns
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.016 Low
EPSS
Percentile
87.2%
Related for OSV:GHSA-384C-GG34-G96H