CVE-2007-6388— Apache 跨站脚本漏洞

EPSS 84.42% · P99 更新日 2026-02-27

新しい脆弱性情報の通知を購読するログインして購読

I. CVE-2007-6388の基本情報

脆弱性情報

脆弱性についてご質問がありますか？Shenlongの分析が参考になるかご確認ください！

Shenlongの10の質問を表示 ↗

高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。

脆弱性タイトル

N/A

ソース: NVD (National Vulnerability Database)

脆弱性説明

Cross-site scripting (XSS) vulnerability in mod_status in the Apache HTTP Server 2.2.0 through 2.2.6, 2.0.35 through 2.0.61, and 1.3.2 through 1.3.39, when the server-status page is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

ソース: NVD (National Vulnerability Database)

CVSS情報

N/A

ソース: NVD (National Vulnerability Database)

脆弱性タイプ

N/A

ソース: NVD (National Vulnerability Database)

脆弱性タイトル

Apache 跨站脚本漏洞

ソース: CNNVD (China National Vulnerability Database)

脆弱性説明

在Apache HTTP Server 2.2.0 至 2.2.6, 2.0.35 至 2.0.61, and 1.3.2 至 1.3.39的mod_status中的跨站脚本攻击漏洞在server-status页激活的情况下会允许远程攻击者借助未知名的向量注入任意的网站脚本或HTML。

ソース: CNNVD (China National Vulnerability Database)

CVSS情報

N/A

ソース: CNNVD (China National Vulnerability Database)

脆弱性タイプ

N/A

ソース: CNNVD (China National Vulnerability Database)

Shenlong 10 Questions — AI 深度分析

十问解析：根本原因、利用方式、修复建议、紧迫性。摘要免费，完整版需登录。

查看摘要完整分析（登录）

影響を受ける製品

ベンダー	プロダクト	影響を受けるバージョン	CPE	購読
-	n/a	n/a	-

II. CVE-2007-6388の公開POC

#	POC説明	ソースリンク	Shenlongリンク

AI生成POCプレミアム

公開POCは見つかりませんでした。

ログインしてAI POCを生成

III. CVE-2007-6388のインテリジェンス情報

お願いしますログインより多くのインテリジェンス情報を見る

http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.htmlx_refsource_CONFIRM
http://httpd.apache.org/security/vulnerabilities_13.htmlx_refsource_CONFIRM
http://docs.info.apple.com/article.html?artnum=307562x_refsource_CONFIRM
http://www.fujitsu.com/global/support/software/security/products-f/interstage-200808e.htmlx_refsource_CONFIRM
http://httpd.apache.org/security/vulnerabilities_22.htmlx_refsource_CONFIRM
http://www116.nortel.com/pub/repository/CLARIFY/DOCUMENT/2008/05/023342-01.pdfx_refsource_CONFIRM
http://httpd.apache.org/security/vulnerabilities_20.htmlx_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2008-032.htmx_refsource_CONFIRM
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=689039x_refsource_CONFIRM
http://securityreason.com/securityalert/3541third-party-advisoryx_refsource_SREASON
http://secunia.com/advisories/29806third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29420third-party-advisoryx_refsource_SECUNIA
About Secunia Research | Flexerathird-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/30430third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28607third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28965third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/31142third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/27237vdb-entryx_refsource_BID
http://secunia.com/advisories/29988third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28922third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/33200third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/30732third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28526third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28977third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29504third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/32800third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/30356third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28467third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28749third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29640third-party-advisoryx_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-26-233623-1vendor-advisoryx_refsource_SUNALERT
http://www-1.ibm.com/support/docview.wss?uid=swg24019245vendor-advisoryx_refsource_AIXAPAR
http://www-1.ibm.com/support/search.wss?rs=0&q=PK59667&apar=onlyvendor-advisoryx_refsource_AIXAPAR
http://www-1.ibm.com/support/docview.wss?uid=swg1PK63273vendor-advisoryx_refsource_AIXAPAR
http://www-1.ibm.com/support/docview.wss?uid=swg1PK62966vendor-advisoryx_refsource_AIXAPAR
http://securitytracker.com/id?1019154vdb-entryx_refsource_SECTRACK
http://www.us-cert.gov/cas/techalerts/TA08-150A.htmlthird-party-advisoryx_refsource_CERT
http://www.ubuntu.com/usn/usn-575-1vendor-advisoryx_refsource_UBUNTU
http://www.securityfocus.com/archive/1/488082/100/0/threadedvendor-advisoryx_refsource_HP
'[security bulletin] HPSBOV02683 SSRT090208 rev.1 - HP Secure Web Server (SWS) for OpenVMS running Ap' - MARCvendor-advisoryx_refsource_HP
http://www.securityfocus.com/archive/1/498523/100/0/threadedvendor-advisoryx_refsource_HP
http://www.vupen.com/english/advisories/2008/0554vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2008/0447/referencesvdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2008/1697vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2008/0924/referencesvdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2008/1623/referencesvdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2008/0047vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2008/1224/referencesvdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2008/0986/referencesvdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2008/0809/referencesvdb-entryx_refsource_VUPEN
http://www.redhat.com/support/errata/RHSA-2008-0261.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2008-0009.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2008-0006.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2008:016vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2008-0007.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2008:014vendor-advisoryx_refsource_MANDRIVA
http://www.mandriva.com/security/advisories?name=MDVSA-2008:015vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2008-0005.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2008-0008.htmlvendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00004.htmlvendor-advisoryx_refsource_SUSE
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00541.htmlvendor-advisoryx_refsource_FEDORA
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00562.htmlvendor-advisoryx_refsource_FEDORA
http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.htmlvendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2008//May/msg00001.htmlvendor-advisoryx_refsource_APPLE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10272vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/39472vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/494428/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/505990/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://lists.apache.org/thread.html/r7dd6be4dc38148704f2edafb44a8712abaa3a2be120d6c3314d55919%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
http://lists.vmware.com/pipermail/security-announce/2009/000062.htmlmailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r84d043c2115176958562133d96d851495d712aa49da155d81f6733be%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rc4c53a0d57b2771ecd4b965010580db355e38137c8711311ee1073a8%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3Emailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2007-6388

Same Patch Batch · n/a · 2008-01-08 · 45 CVEs total

CVE-2007-6669		PHPCredo PHCDownload 'search.php' 跨站脚本攻击漏洞
CVE-2008-0095		Asterisk SIP channel驱动远程拒绝服务漏洞
CVE-2008-0094		MODx 多个目录遍历漏洞
CVE-2008-0096		georgia_softworks ssh2_server 缓冲区溢出漏洞
CVE-2008-0099		MyPHP Forum SQL注入漏洞
CVE-2008-0100		White_Dune 'Scene.cpp'栈缓冲区溢出漏洞
CVE-2008-0101		White_Dune 'DuneApp.cpp'格式字符串漏洞
CVE-2007-5965		Trolltech Qt QSslSocket证书验证绕过漏洞
CVE-2008-0093		eTicket 'newticket.php' 多个跨站脚本攻击漏洞
CVE-2008-0098		RealPlayer 11 build 缓冲区溢出漏洞
CVE-2007-6670		PHPCredo PHCDownload 'search.php' SQL注入漏洞
CVE-2007-6668		MySpace Content Zone 'uploadgames.php' 任意文件上传漏洞
CVE-2008-0132		Pragma FortressSSH 资源管理错误漏洞
CVE-2008-0131		Instant Softwares Dating Site 'login_form.asp'跨站脚本漏洞
CVE-2008-0130		Instant Softwares Dating Site 'login_form.asp' SQL注入漏洞
CVE-2008-0129		Site@School 'slideshow_full.php' SQL注入漏洞
CVE-2007-6673		Makale Scripti 跨站脚本攻击漏洞
CVE-2007-6672		Mortbay Jetty敏感信息泄露漏洞
CVE-2007-6671		InstantSoftwares Dating Site 'login_form.asp' SQL注入漏洞
CVE-2007-6422		Apache HTTP Server 资源管理错误漏洞

Showing 20 of 45 CVEs. View all on vendor page →

IV. 関連脆弱性

同じ製品: n/a

同じベンダー: n/a

V. CVE-2007-6388へのコメント

まだコメントはありません

目標達成すべての支援者に感謝 — 100%達成しました！

CVE-2007-6388— Apache 跨站脚本漏洞

I. CVE-2007-6388の基本情報

脆弱性情報

脆弱性タイトル

脆弱性説明

CVSS情報

脆弱性タイプ

脆弱性タイトル

脆弱性説明

CVSS情報

脆弱性タイプ

Shenlong 10 Questions — AI 深度分析

影響を受ける製品

II. CVE-2007-6388の公開POC

III. CVE-2007-6388のインテリジェンス情報

Same Patch Batch · n/a · 2008-01-08 · 45 CVEs total

IV. 関連脆弱性

V. CVE-2007-6388へのコメント

コメントを残す

目標達成 すべての支援者に感謝 — 100%達成しました！

CVE-2007-6388— Apache 跨站脚本漏洞

I. CVE-2007-6388の基本情報

脆弱性情報

脆弱性タイトル

脆弱性説明

CVSS情報

脆弱性タイプ

脆弱性タイトル

脆弱性説明

CVSS情報

脆弱性タイプ

Shenlong 10 Questions — AI 深度分析

影響を受ける製品

II. CVE-2007-6388の公開POC

III. CVE-2007-6388のインテリジェンス情報

Same Patch Batch · n/a · 2008-01-08 · 45 CVEs total

IV. 関連脆弱性

V. CVE-2007-6388へのコメント

コメントを残す

目標達成すべての支援者に感謝 — 100%達成しました！