CVE-2007-3930
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-3930
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Interpretation conflict between Microsoft Internet Explorer and DocuWiki before 2007-06-26b allows remote attackers to inject arbitrary JavaScript and conduct cross-site scripting (XSS) attacks when spellchecking UTF-8 encoded messages via the spell_utf8test function in lib/exe/spellcheck.php, which triggers HTML document identification and script execution by Internet Explorer even though the Content-Type header is text/plain.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Internet Explorer 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Internet Explorer(IE)是美国微软(Microsoft)公司的一款Windows操作系统附带的Web浏览器。 Microsoft Internet Explorer和DocuWiki 2007-06-26b版本之前的版本之间存在翻译冲突。远程攻击者当检测UTF-8编码信息时,可以借助lib/exe/spellcheck.php的spell_utf8test函数,注入任意的JavaScript并执行跨站脚本攻击。这会触发HTML文件验证和通过Internet Explo
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-3930
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-3930
请登录查看更多情报信息。
Vendor Advisories for CVE-2007-3930 (6)
Other References for CVE-2007-3930 (3)
- http://wiki.splitbrain.org/wiki%3Achangesx_refsource_CONFIRM
- http://bugs.splitbrain.org/index.php?do=details&task_id=1195x_refsource_MISC
Same Patch Batch · n/a · 2007-07-21 · 22 CVEs total
| CVE-2007-3933 | QuickEStore InsertOrder.CFM SQL注入漏洞 | |
| CVE-2007-3943 | Infinite Responder 未明SQL注入漏洞 | |
| CVE-2007-3942 | Simple Machines Forum (SMF) 目录遍历漏洞 | |
| CVE-2007-3941 | Jasmine CMS Profile.PHP HTML注入漏洞 | |
| CVE-2007-3940 | QuickerSite Default.ASP 跨站脚本攻击漏洞 | |
| CVE-2007-3939 | SpoonLabs Vivvo CMS Index.PHP SQL注入漏洞 | |
| CVE-2007-3938 | MAXdev MDPro (MD-Pro) index.php SQL注入漏洞 | |
| CVE-2007-3937 | A-shop SQL注入漏洞 | |
| CVE-2007-3936 | A-shop admin/filebrowser.asp 目录遍历漏洞 | |
| CVE-2007-3935 | phpBB SupaNav Link_main.php 文件漏洞 | |
| CVE-2007-3934 | BBS E-Market P_Mode Parameter 远程文件包含漏洞 | |
| CVE-2007-3922 | Sun Java Runtime Environment Network 访问权限制安全绕过漏洞 | |
| CVE-2007-3932 | Joomla Expose Component Uploadimg.PHP 任意文件上传漏洞 | |
| CVE-2007-3931 | Samsung SCX-4200 Driver wrap_setuid_third_party_application函数文件漏洞 | |
| CVE-2007-3929 | Opera Software Opera 资源管理错误漏洞 | |
| CVE-2007-3928 | 雅虎通地址簿远程溢出漏洞 | |
| CVE-2007-3927 | Ipswitch Imail IMailsec.dll组件缓冲溢出漏洞 | |
| CVE-2007-3926 | Ipswitch IMail Server 拒绝服务漏洞 | |
| CVE-2007-3925 | Ipswitch Imail IMAP 守护程序 缓冲区溢出漏洞 | |
| CVE-2007-3924 | Microsoft Internet Explorer 安全漏洞 |
Showing top 20 of 22 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-9376
JPress UCenter Article Submission Endpoint doWriteSave impro - CVE-2026-9373
JeecgBoot OpenAPI Endpoint call improper authentication - CVE-2026-9365
Ettercap GG Dissector ec_gg.c FUNC_DECODER heap-based overfl - CVE-2026-9358
postcss AST Serialization container.js toString recursion - CVE-2026-9357
vBulletin Login cross site scripting
V. Comments for CVE-2007-3930
No comments yet