CVE

Id
27430  
CVE No.
CVE-2007-4073  
Status
Candidate  
Description
Webbler CMS before 3.1.6 does not properly restrict use of "mail a friend" forms, which allows remote attackers to send arbitrary amounts of forged e-mail. NOTE: this could be leveraged for spam or phishing attacks.  
Phase
Assigned (20070730)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
282145 27430 CVE-2007-4073 BUGTRAQ:20070724 PR07-21: Webbler CMS forms are susceptible to spamming and phishing abuses  View
282146 27430 CVE-2007-4073 URL:http://www.securityfocus.com/archive/1/archive/1/474521/100/0/threaded  View
282147 27430 CVE-2007-4073 MISC:http://tincan.co.uk/?lid=1975  View
282148 27430 CVE-2007-4073 MISC:http://www.procheckup.com/Vulner_2007.php  View
282149 27430 CVE-2007-4073 OSVDB:38994  View
282150 27430 CVE-2007-4073 URL:http://osvdb.org/38994  View
282151 27430 CVE-2007-4073 SREASON:2955  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
53739 JVNDB-2007-002431 Alisveris Sitesi Scripti の index.asp におけるクロスサイトスクリプティングの脆弱性 Alisveris Sitesi Scripti の index.asp には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2007-4075 27430 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-002431.html  View