Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2007-4189

EPSS 0.03% · P8
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-4189

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.0.13 (aka Sunglow) allow remote attackers to inject arbitrary web script or HTML via unspecified vectors in the (1) com_search, (2) com_content, and (3) mod_login components. NOTE: some of these details are obtained from third party information.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Joomla! 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Joomla!是一套使用在Joomla!内容管理系统中的论坛组件。 Joomla! 1.0.13 (又称Sunglow)版本之前的版本中存在跨站脚本漏洞。远程攻击者可以借助(1) com_search, (2) com_content, 和(3) mod_login 组件中的未明向量,注入任意web脚本或HTML。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2007-4189

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2007-4189

登录查看更多情报信息。

Vendor Advisories for CVE-2007-4189 (5)

Other References for CVE-2007-4189 (1)

Same Patch Batch · n/a · 2007-08-08 · 84 CVEs total

CVE-2007-3844Firefox/Thunderbird/SeaMonkey Chrome加载about:blank窗口权限提升漏洞
CVE-2007-4183PHP Arena paBugs 'main.php' SQL注入漏洞
CVE-2007-2927Atheros无线网卡驱动远程拒绝服务漏洞
CVE-2007-3108OpenSSL 安全漏洞
CVE-2007-4212PHP-Nuke Search模块多个跨站脚本攻击漏洞
CVE-2007-4209Aceboard 'Recherche.php' SQL注入漏洞
CVE-2007-4208Next Gen Portfolio Manager Default.ASP 多个SQL注入漏洞
CVE-2007-4207Gallery In A Box 'admin_console/index.asp' SQL注入漏洞
CVE-2007-4206Kaspersky Anti-Spam不安全文件权限漏洞
CVE-2007-4210LANAI CMS 多个SQL注入漏洞
CVE-2007-3384Apache Tomcat Error Message Reporting 跨站脚本攻击漏洞
CVE-2007-3845Mozilla Firefox 输入验证漏洞
CVE-2007-4175OpenRat CMS 'index.php'多个跨站脚本攻击漏洞
CVE-2007-4176EQDKP Plus多个未明漏洞
CVE-2007-4177Interact 多个跨站脚本攻击漏洞
CVE-2007-4178WebDirector Index.PHP 跨站脚本攻击漏洞
CVE-2007-4179HP-UX Address和ARPA传输功能 未明本地拒绝服务漏洞
CVE-2007-4180Pluck 'data/inc/theme.php'目录遍历漏洞
CVE-2007-4181Pluck 'data/inc/theme.php'PHP远程文件包含漏洞
CVE-2007-4182WikiWebWeaver'index.php' 任意文件上传漏洞

Showing top 20 of 84 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2007-4189

No comments yet

Leave a comment