admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-09-17 18:45:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2007/CVE-2007-14xx/CVE-2007-1405.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

143 lines
4.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2007-1405",
"sourceIdentifier": "cve@mitre.org",
"published": "2007-03-10T22:19:00.000",
"lastModified": "2024-11-21T00:28:13.830",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in the \"download wiki page as text\" feature in Trac before 0.10.3.1, when Microsoft Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified parameters."
},
{
"lang": "es",
"value": "Vulnerabilidad de secuencia de comandos en sitios cruzados (XSS) en la caracter\u00edstica \"descargar wiki como p\u00e1gina de texto\" en Trac anterior a 0.10.3.1, cuando se utiliza Microsoft Internet Explorer, permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s de par\u00e1metros no especificados."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"baseScore": 4.3,
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": true
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:edgewall_software:trac:0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "380AFEFF-64A3-43A7-8EBB-88829039A9EC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:edgewall_software:trac:0.10.1:*:*:*:*:*:*:*",
"matchCriteriaId": "541460F8-30BC-40B3-ADE7-A0C8FAC7C34E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:edgewall_software:trac:0.10.2:*:*:*:*:*:*:*",
"matchCriteriaId": "393BF6C4-B455-4DDE-9A29-794AF3900F60"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:edgewall_software:trac:0.10.3:*:*:*:*:*:*:*",
"matchCriteriaId": "9DF703B1-B485-4D16-90C9-820A2780AE2C"
}
]
}
]
}
],
"references": [
{
"url": "http://secunia.com/advisories/24470",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://trac.edgewall.org/wiki/ChangeLog",
"source": "cve@mitre.org",
"tags": [
"Patch"
]
},
{
"url": "http://www.securityfocus.com/bid/22888",
"source": "cve@mitre.org"
},
{
"url": "http://www.vupen.com/english/advisories/2007/0900",
"source": "cve@mitre.org"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32897",
"source": "cve@mitre.org"
},
{
"url": "http://secunia.com/advisories/24470",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://trac.edgewall.org/wiki/ChangeLog",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
]
},
{
"url": "http://www.securityfocus.com/bid/22888",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.vupen.com/english/advisories/2007/0900",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32897",
"source": "af854a3a-2127-422b-91ae-364da2661108"
}
]
}
Reference in New Issue View Git Blame Copy Permalink