Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2007-3421

EPSS 0.45% · P63
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-3421

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The (1) login, (2) admin profile edit, (3) reminder, (4) edit profile, (5) profile view, (6) gallery view, (7) gallery comment, and (8) gallery feedback capabilities in web-app.org WebAPP before 0.9.9.7 do not verify presence of users in memberlist.dat, which has unknown impact and remote attack vectors.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
web-app.org WebAPP 远程攻击漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
web-app.org WebAPP中存在远程攻击漏洞。远程攻击者可以利用(1)登录,(2)网管资料编辑,(3)提示,(4)编辑资料,(5)资料查看,(6)画廊查看,(7)画廊评论和(8)画廊反馈性能没有校验memberlist.dat中用户而攻击向量。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2007-3421

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2007-3421

登录查看更多情报信息。

Same Patch Batch · n/a · 2007-06-26 · 47 CVEs total

CVE-2007-3411ClickGallery Server edit_image.asp SQL注入漏洞
CVE-2007-3414access2asp 跨站脚本攻击漏洞
CVE-2007-3416web-app.org WebAPP跨站请求伪造漏洞
CVE-2007-3419web-app.org WebAPP远程攻击漏洞
CVE-2007-3420web-app.org WebAPP远程攻击漏洞
CVE-2007-3422web-app.org WebAPP远程攻击漏洞
CVE-2007-3423web-app.org WebAPP远程攻击漏洞
CVE-2007-3424web-app.org WebAPP 远程攻击漏洞
CVE-2007-3418web-app.org WebAPP身份假冒漏洞
CVE-2007-3412ClickGallery Server edit_image.asp 跨站脚本攻击漏洞
CVE-2007-3413bosDataGrid 跨站脚本攻击漏洞
CVE-2006-7208Adam Van Dongen PhpBB Component 远程文件包含漏洞
CVE-2007-3410RealPlayer/HelixPlayer ParseWallClockValue函数栈缓冲区溢出漏洞
CVE-2007-2798MIT Kerberos 5 KAdminD服务程序rename_principal_2_svc()函数远程栈溢出漏洞
CVE-2007-2443MIT Kerberos 5 KAdminD 安全漏洞
CVE-2007-2442MIT Kerberos RPC库gssrpc__svcauth_gssapi()函数未初始化指针释放漏洞
CVE-2007-3409Net::DNS远程拒绝服务漏洞
CVE-2007-3408Dia 未明漏洞
CVE-2007-3407SHTTPD文件名解析错误信息泄露漏洞
CVE-2007-3406Microsoft Internet Explorer 安全漏洞

Showing top 20 of 47 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2007-3421

No comments yet

Leave a comment