ID OSVDB:32964
Type osvdb
Reporter OSVDB
Modified 2007-01-25T09:03:43
Description
Solution Description
Upgrade to version 4.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
References:
Secunia Advisory ID:23913
Related OSVDB ID: 32965
Other Advisory URL: http://jvn.jp/jp/JVN%2305123538/index.html
FrSIRT Advisory: ADV-2007-0344
CVE-2007-0547
{"bulletinFamily": "software", "viewCount": 1, "reporter": "OSVDB", "references": [], "description": "## Solution Description\nUpgrade to version 4.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\n[Secunia Advisory ID:23913](https://secuniaresearch.flexerasoftware.com/advisories/23913/)\n[Related OSVDB ID: 32965](https://vulners.com/osvdb/OSVDB:32965)\nOther Advisory URL: http://jvn.jp/jp/JVN%2305123538/index.html\nFrSIRT Advisory: ADV-2007-0344\n[CVE-2007-0547](https://vulners.com/cve/CVE-2007-0547)\n", "affectedSoftware": [], "href": "https://vulners.com/osvdb/OSVDB:32964", "modified": "2007-01-25T09:03:43", "enchantments": {"score": {"value": 5.5, "vector": "NONE", "modified": "2017-04-28T13:20:29", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2007-0547"]}, {"type": "osvdb", "idList": ["OSVDB:32965"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7108"]}], "modified": "2017-04-28T13:20:29", "rev": 2}, "vulnersScore": 5.5}, "id": "OSVDB:32964", "title": "CGI Rescue WebFORM Unspecified XSS", "edition": 1, "published": "2007-01-25T09:03:43", "type": "osvdb", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "cvelist": ["CVE-2007-0547"], "lastseen": "2017-04-28T13:20:29", "immutableFields": []}
{"cve": [{"lastseen": "2021-02-02T05:31:20", "description": "Cross-site scripting (XSS) vulnerability in CGI-RESCUE WebFORM 4.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.", "edition": 6, "cvss3": {}, "published": "2007-01-29T17:28:00", "title": "CVE-2007-0547", "type": "cve", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "NONE", "availabilityImpact": "NONE", "integrityImpact": "PARTIAL", "baseScore": 4.3, "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2007-0547"], "modified": "2011-03-08T02:50:00", "cpe": ["cpe:/a:cgi-rescue:webform:4.3"], "id": "CVE-2007-0547", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-0547", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cpe23": ["cpe:2.3:a:cgi-rescue:webform:4.3:*:*:*:*:*:*:*"]}], "osvdb": [{"lastseen": "2017-04-28T13:20:29", "bulletinFamily": "software", "cvelist": ["CVE-2007-0547"], "description": "## Solution Description\nUpgrade to version 4.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\n[Secunia Advisory ID:23913](https://secuniaresearch.flexerasoftware.com/advisories/23913/)\n[Related OSVDB ID: 32964](https://vulners.com/osvdb/OSVDB:32964)\nOther Advisory URL: http://jvn.jp/jp/JVN%2305088443/index.html\nFrSIRT Advisory: ADV-2007-0344\n[CVE-2007-0547](https://vulners.com/cve/CVE-2007-0547)\n", "edition": 1, "modified": "2007-01-25T09:03:43", "published": "2007-01-25T09:03:43", "href": "https://vulners.com/osvdb/OSVDB:32965", "id": "OSVDB:32965", "title": "CGI Rescue WebFORM Unspecified HTTP Header XSS", "type": "osvdb", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:09:22", "bulletinFamily": "software", "cvelist": ["CVE-2007-0226", "CVE-2007-0595", "CVE-2007-0540", "CVE-2007-0600", "CVE-2007-0599", "CVE-2007-0554", "CVE-2007-0594", "CVE-2007-0534", "CVE-2007-0506", "CVE-2007-0593", "CVE-2007-0861", "CVE-2007-0601", "CVE-2007-0592", "CVE-2007-0541", "CVE-2007-0597", "CVE-2007-0547", "CVE-2007-0505", "CVE-2007-0538", "CVE-2007-0539", "CVE-2007-0632", "CVE-2007-0598", "CVE-2007-0596", "CVE-2007-0565"], "description": "PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.", "edition": 1, "modified": "2007-01-25T00:00:00", "published": "2007-01-25T00:00:00", "id": "SECURITYVULNS:VULN:7108", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:7108", "title": "Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)", "type": "securityvulns", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}
