CVE

Id
23873  
CVE No.
CVE-2007-0516  
Status
Candidate  
Description
Yana Framework before 2.8.5a allows remote authenticated users with permissions to modify a guestbook profile to modify or delete arbitrary guestbook profiles via unspecified vectors. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.  
Phase
Assigned (20070125)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
232621 23873 CVE-2007-0516 MISC:http://all-community.de/pub/pages/changes.php?language=en  View
232622 23873 CVE-2007-0516 OSVDB:31615  View
232623 23873 CVE-2007-0516 URL:http://www.osvdb.org/31615  View
232624 23873 CVE-2007-0516 SECUNIA:23855  View
232625 23873 CVE-2007-0516 URL:http://secunia.com/advisories/23855  View
232626 23873 CVE-2007-0516 XF:yana-unspecified-security-bypass(31671)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
56314 JVNDB-2007-005006 Scriptsez Smart PHP Subscriber におけるエンコードされたパスワードを取得される脆弱性 Scriptsez Smart PHP Subscriber は、不十分なアクセスコントロールで Web ルート配下に重要な情報を格納するため、エンコードされたパスワードを取得される脆弱性が存在します。 CVE-2007-0518 23873 7.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005006.html  View