PT-2007-2604 · Webapp · Webapp
Published
2007-02-28
·
Updated
2011-03-08
·
CVE-2007-1177
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
WebAPP versions prior to 0.9.9.5
Description
The issue is related to improper filtering of certain characters in various contexts, including the query string, Profiles, the Forum Post icon field, the Edit Profile, and the Gallery. This could potentially be related to cross-site scripting (XSS) and has unknown impact with remote attack vectors.
Recommendations
For versions prior to 0.9.9.5, update to version 0.9.9.5 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Webapp