CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-3651

class/page.php in Farsi Script (aka FaScript) FaName 1.0 allows remote attackers to obtain sensitive information via a '; (quote semicolon) sequence in the id parameter, which reveals the installation path in an error message.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.7%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 4.3

References

http://descriptions.securescout.com/tc/17971
http://www.netvigilance.com/advisory0041
http://descriptions.securescout.com/tc/17971
http://www.netvigilance.com/advisory0041

Products affected by CVE-2007-3651

Fascript » Faname » Version: 1.0

cpe:2.3:a:fascript:faname:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-3651

Products

Pricing

Contact Us